CVE-2023-43760

CVE Database · CVE-2023-43760

CVE-2023-43760

· HIGHModified

CVSS v3.1

7.5

EPSS

0.53%

Published

Sep 22, 2023

Modified

Nov 21, 2024

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Certain WithSecure products allow Denial of Service via a fuzzed PE32 file. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements Endpoint Protection for Mac 17 and later, Linux Security 64 12.0 , Linux Protection 12.0, and WithSecure Atlant (formerly F-Secure Atlant) 1.0.35-1.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Products (12)

f-secure · client_securityvulnerable

f-secure · elements_endpoint_protectionvulnerable

f-secure · email_and_server_securityvulnerable

f-secure · server_securityvulnerable

microsoft · windows

f-secure · client_securityvulnerable

f-secure · elements_endpoint_protectionvulnerable

apple · macos

f-secure · linux_protectionvulnerable