CVE-2023-47264

Certain WithSecure products have a buffer over-read whereby processing certain fuzz file types may cause a denial of service (DoS). This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements Endpoint Protection for Mac 17 and later, WithSecure Linux Security 64 12.0, WithSecure Linux Protection 12.0, and WithSecure Atlant (formerly F-Secure Atlant) 15 and later.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:withsecure:client_security:15:*:*:*:*:*:*:*
cpe:2.3:a:withsecure:elements_endpoint_protection:*:*:*:*:*:*:*:*
cpe:2.3:a:withsecure:email_and_server_security:15:*:*:*:*:*:*:*
cpe:2.3:a:withsecure:server_security:15:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
OR cpe:2.3:a:withsecure:client_security:15:*:*:*:*:*:*:*
cpe:2.3:a:withsecure:elements_endpoint_protection:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
OR cpe:2.3:a:withsecure:linux_protection:12.0:*:*:*:*:*:*:*
cpe:2.3:a:withsecure:linux_security_64:12.0:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*

Configuration 4 (hide)

OR cpe:2.3:a:withsecure:atlant:*:*:*:*:*:*:*:*
cpe:2.3:a:withsecure:atlant:1.0.35-1:*:*:*:*:*:*:*

History

21 Nov 2024, 08:30

Type Values Removed Values Added
References () https://www.withsecure.com/en/support/security-advisories/cve-2023-47264 - Vendor Advisory () https://www.withsecure.com/en/support/security-advisories/cve-2023-47264 - Vendor Advisory

01 Dec 2023, 18:32

Type Values Removed Values Added
CWE CWE-125
References () https://www.withsecure.com/en/support/security-advisories/cve-2023-47264 - () https://www.withsecure.com/en/support/security-advisories/cve-2023-47264 - Vendor Advisory
First Time Withsecure client Security
Withsecure linux Security 64
Withsecure server Security
Apple
Apple macos
Withsecure
Withsecure linux Protection
Withsecure email And Server Security
Linux linux Kernel
Withsecure atlant
Linux
Microsoft
Microsoft windows
Withsecure elements Endpoint Protection
CPE cpe:2.3:a:withsecure:email_and_server_security:15:*:*:*:*:*:*:*
cpe:2.3:a:withsecure:linux_security_64:12.0:*:*:*:*:*:*:*
cpe:2.3:a:withsecure:server_security:15:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:a:withsecure:client_security:15:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:a:withsecure:atlant:1.0.35-1:*:*:*:*:*:*:*
cpe:2.3:a:withsecure:linux_protection:12.0:*:*:*:*:*:*:*
cpe:2.3:a:withsecure:elements_endpoint_protection:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
cpe:2.3:a:withsecure:atlant:*:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.5

16 Nov 2023, 13:51

Type Values Removed Values Added
New CVE

Information

Published : 2023-11-16 03:15

Updated : 2024-11-21 08:30


NVD link : CVE-2023-47264

Mitre link : CVE-2023-47264

CVE.ORG link : CVE-2023-47264


JSON object : View

Products Affected

withsecure

  • client_security
  • email_and_server_security
  • linux_security_64
  • linux_protection
  • server_security
  • atlant
  • elements_endpoint_protection

apple

  • macos

linux

  • linux_kernel

microsoft

  • windows
CWE
CWE-125

Out-of-bounds Read