CVE-2023-47263
First published: Thu Nov 16 2023(Updated: )
Certain WithSecure products allow a Denial of Service (DoS) in the antivirus engine when scanning a fuzzed PE32 file. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements Endpoint Protection for Mac 17 and later, WithSecure Linux Security 64 12.0, WithSecure Linux Protection 12.0, and WithSecure Atlant (formerly F-Secure Atlant) 15 and later.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| Any of | ||
| WithSecure Client Security | =15 | |
| WithSecure Elements Endpoint Protection | >=17 | |
| WithSecure Email and Server Security | =15 | |
| WithSecure Server Security | =15 | |
| Microsoft Windows | ||
| All of | ||
| Any of | ||
| WithSecure Client Security | =15 | |
| WithSecure Elements Endpoint Protection | >=17 | |
| Apple macOS | ||
| All of | ||
| Any of | ||
| WithSecure Linux Protection | =12.0 | |
| WithSecure Linux Security 64 | =12.0 | |
| Linux Linux kernel | ||
| WithSecure Atlant | >=15.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2023-47263?
CVE-2023-47263 is a vulnerability that allows a Denial of Service (DoS) in the antivirus engine when scanning a fuzzed PE32 file in certain WithSecure products.
Which products are affected by CVE-2023-47263?
CVE-2023-47263 affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, and WithSecure Atlant.
What is the severity of CVE-2023-47263?
CVE-2023-47263 has a severity value of 7.5, which is considered high.
How does CVE-2023-47263 impact the affected products?
CVE-2023-47263 allows an attacker to perform a Denial of Service (DoS) attack on the antivirus engine by scanning a fuzzed PE32 file in the affected WithSecure products.
How can I fix CVE-2023-47263?
To fix CVE-2023-47263, it is recommended to update the affected WithSecure products to a version that includes a patch for the vulnerability.
- collector/nvd-api
- agent/severity
- agent/author
- agent/description
- agent/references
- agent/type
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/withsecure
- canonical/withsecure client security
- version/withsecure client security/15
- canonical/withsecure elements endpoint protection
- version/withsecure elements endpoint protection/17
- canonical/withsecure email and server security
- version/withsecure email and server security/15
- canonical/withsecure server security
- version/withsecure server security/15
- vendor/microsoft
- canonical/microsoft windows
- vendor/apple
- canonical/apple macos
- canonical/withsecure linux protection
- version/withsecure linux protection/12.0
- canonical/withsecure linux security 64
- version/withsecure linux security 64/12.0
- vendor/linux
- canonical/linux linux kernel
- canonical/withsecure atlant
- version/withsecure atlant/15.0