CVE-2023-49321
First published: Sun Nov 26 2023(Updated: )
Certain WithSecure products allow a Denial of Service because scanning a crafted file takes a long time, and causes the scanner to hang. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements Endpoint Protection for Mac 17 and later, WithSecure Linux Security 64 12.0, WithSecure Linux Protection 12.0, and WithSecure Atlant 1.0.35-1.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| Any of | ||
| F-secure Linux Protection | =12.0 | |
| F-secure Linux Security 64 | =12.0 | |
| Linux Linux kernel | ||
| F-Secure Atlant | =1.0.35-1 | |
| All of | ||
| Any of | ||
| F-Secure Client Security | =15.00 | |
| F-secure Elements Endpoint Protection | >=17.0 | |
| F-secure Email And Server Security | =15.00 | |
| F-Secure Server Security | =15.00 | |
| Microsoft Windows | ||
| All of | ||
| Any of | ||
| F-Secure Client Security | =15.00 | |
| F-secure Elements Endpoint Protection | >=17.0 | |
| Apple macOS |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2023-49321?
CVE-2023-49321 is a vulnerability that allows a Denial of Service attack on certain WithSecure products.
Which products are affected by CVE-2023-49321?
CVE-2023-49321 affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, and WithSecure Elements Endpoint Protection 17.
What is the severity of CVE-2023-49321?
CVE-2023-49321 has a severity rating of 5.3, which is considered medium.
How does CVE-2023-49321 work?
CVE-2023-49321 works by scanning a crafted file, which takes a long time and causes the scanner to hang, resulting in a Denial of Service.
Is Linux Kernel vulnerable to CVE-2023-49321?
No, Linux Kernel is not vulnerable to CVE-2023-49321.
- collector/nvd-api
- agent/references
- agent/severity
- agent/author
- agent/type
- agent/description
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/f-secure
- canonical/f-secure linux protection
- version/f-secure linux protection/12.0
- canonical/f-secure linux security 64
- version/f-secure linux security 64/12.0
- vendor/linux
- canonical/linux linux kernel
- canonical/f-secure atlant
- version/f-secure atlant/1.0.35-1
- canonical/f-secure client security
- version/f-secure client security/15.00
- canonical/f-secure elements endpoint protection
- version/f-secure elements endpoint protection/17.0
- canonical/f-secure email and server security
- version/f-secure email and server security/15.00
- canonical/f-secure server security
- version/f-secure server security/15.00
- vendor/microsoft
- canonical/microsoft windows
- vendor/apple
- canonical/apple macos