What is CVE-2020-9342?

CVE-2020-9342 is a vulnerability in the F-Secure AV parsing engine that allows virus-detection bypass via crafted Compression Method data in a GZIP archive.

What is the severity of CVE-2020-9342?

The severity of CVE-2020-9342 is medium with a severity value of 5.5.

How can the virus-detection bypass be achieved in CVE-2020-9342?

The virus-detection bypass can be achieved by using crafted Compression Method data in a GZIP archive.

Is there a fix available for CVE-2020-9342?

Yes, the fix for CVE-2020-9342 is to update to version 17.0.605.474 or later of F-Secure Cloud Protection For Salesforce, Email and Server Security, and Internet GateKeeper.

Vulnerability/
CVE-2020-9342

medium

5.5

CWE

436

22/2/2020

4/8/2024

CVE-2020-9342

Q: Which software versions are affected by CVE-2020-9342?

Versions before 17.0.605.474 (on Linux) of F-Secure Cloud Protection For Salesforce, Email and Server Security, and Internet GateKeeper are affected by CVE-2020-9342.

First published: Sat Feb 22 2020(Updated: )

The F-Secure AV parsing engine before 2020-02-05 allows virus-detection bypass via crafted Compression Method data in a GZIP archive. This affects versions before 17.0.605.474 (on Linux) of Cloud Protection For Salesforce, Email and Server Security, and Internet GateKeeper.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
F-secure Cloud Protection For Salesforce	<17.0.605.474
F-secure Email And Server Security	<17.0.605.474
F-secure Internet Gatekeeper	<17.0.605.474

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2020-9342?
CVE-2020-9342 is a vulnerability in the F-Secure AV parsing engine that allows virus-detection bypass via crafted Compression Method data in a GZIP archive.
Which software versions are affected by CVE-2020-9342?
Versions before 17.0.605.474 (on Linux) of F-Secure Cloud Protection For Salesforce, Email and Server Security, and Internet GateKeeper are affected by CVE-2020-9342.
What is the severity of CVE-2020-9342?
The severity of CVE-2020-9342 is medium with a severity value of 5.5.
How can the virus-detection bypass be achieved in CVE-2020-9342?
The virus-detection bypass can be achieved by using crafted Compression Method data in a GZIP archive.
Is there a fix available for CVE-2020-9342?
Yes, the fix for CVE-2020-9342 is to update to version 17.0.605.474 or later of F-Secure Cloud Protection For Salesforce, Email and Server Security, and Internet GateKeeper.

collector/nvd-index
agent/weakness
agent/references
agent/author
agent/severity
agent/type
agent/event
agent/description
agent/first-publish-date
agent/softwarecombine
agent/last-modified-date
agent/tags
collector/mitre-cve
source/MITRE
vendor/f-secure
canonical/f-secure cloud protection for salesforce
canonical/f-secure email and server security
canonical/f-secure internet gatekeeper

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.