CVE-2023-42525
First published: Mon Sep 18 2023(Updated: )
Certain WithSecure products allow an infinite loop in a scanning engine via unspecified file types. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements Endpoint Protection for Mac 17 and later, Linux Security 64 12.0 , Linux Protection 12.0, and WithSecure Atlant (formerly F-Secure Atlant) 1.0.35-1.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| WithSecure Client Security | =15 | |
| WithSecure Elements Endpoint Protection | >=17 | |
| WithSecure Email and Server Security | =15 | |
| WithSecure Server Security | =15 | |
| Microsoft Windows | ||
| Apple macOS | ||
| WithSecure Linux Protection | =12.0 | |
| WithSecure Linux Security 64 | =12.0 | |
| Linux Linux kernel | ||
| WithSecure Atlant | =1.0.35-1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2023-42525?
CVE-2023-42525 is a vulnerability that allows an infinite loop in a scanning engine in certain WithSecure products.
Which WithSecure products are affected by CVE-2023-42525?
WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later are affected by CVE-2023-42525.
How severe is CVE-2023-42525?
CVE-2023-42525 has a severity rating of high.
How can I fix CVE-2023-42525?
There is currently no known fix for CVE-2023-42525. It is recommended to follow the vendor's security advisory for updates and mitigation recommendations.
Where can I find more information about CVE-2023-42525?
You can find more information about CVE-2023-42525 in the security advisory provided by WithSecure: [https://www.withsecure.com/en/support/security-advisories](https://www.withsecure.com/en/support/security-advisories)
- collector/nvd-index
- collector/nvd-api
- agent/severity
- agent/references
- agent/author
- agent/description
- agent/weakness
- agent/type
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/withsecure
- canonical/withsecure client security
- version/withsecure client security/15
- canonical/withsecure elements endpoint protection
- version/withsecure elements endpoint protection/17
- canonical/withsecure email and server security
- version/withsecure email and server security/15
- canonical/withsecure server security
- version/withsecure server security/15
- vendor/microsoft
- canonical/microsoft windows
- vendor/apple
- canonical/apple macos
- canonical/withsecure linux protection
- version/withsecure linux protection/12.0
- canonical/withsecure linux security 64
- version/withsecure linux security 64/12.0
- vendor/linux
- canonical/linux linux kernel
- canonical/withsecure atlant
- version/withsecure atlant/1.0.35-1