CVE-2023-43767
First published: Fri Sep 22 2023(Updated: )
Certain WithSecure products allow Denial of Service via the aepack archive unpack handler. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements Endpoint Protection for Mac 17 and later, Linux Security 64 12.0 , Linux Protection 12.0, and WithSecure Atlant (formerly F-Secure Atlant) 1.0.35-1.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| F-secure Linux Protection | =12.0 | |
| F-secure Linux Security 64 | =12.0 | |
| Linux Linux kernel | ||
| F-Secure Atlant | =1.0.35-1 | |
| F-Secure Client Security | =15.00 | |
| F-secure Elements Endpoint Protection | >=17.0 | |
| F-secure Email And Server Security | =15.00 | |
| F-Secure Server Security | =15.00 | |
| Microsoft Windows | ||
| Apple macOS |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2023-43767?
CVE-2023-43767 is a vulnerability that allows Denial of Service through the aepack archive unpack handler in certain WithSecure products.
Which products are affected by CVE-2023-43767?
CVE-2023-43767 affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, and WithSecure Client Security for Mac 15.
What is the severity of CVE-2023-43767?
CVE-2023-43767 has a severity of 7.5 (high).
How can I fix CVE-2023-43767?
To fix CVE-2023-43767, it is recommended to update the affected WithSecure products to the latest version provided by the vendor.
Where can I find more information about CVE-2023-43767?
You can find more information about CVE-2023-43767 on the WithSecure website's support section and the associated security advisory page.
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- collector/nvd-api
- collector/nvd-index
- vendor/f-secure
- canonical/f-secure linux protection
- version/f-secure linux protection/12.0
- canonical/f-secure linux security 64
- version/f-secure linux security 64/12.0
- vendor/linux
- canonical/linux linux kernel
- canonical/f-secure atlant
- version/f-secure atlant/1.0.35-1
- canonical/f-secure client security
- version/f-secure client security/15.00
- canonical/f-secure elements endpoint protection
- version/f-secure elements endpoint protection/17.0
- canonical/f-secure email and server security
- version/f-secure email and server security/15.00
- canonical/f-secure server security
- version/f-secure server security/15.00
- vendor/microsoft
- canonical/microsoft windows
- vendor/apple
- canonical/apple macos