Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
protection engine vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-38166
In F-Secure Endpoint Protection for Windows and macOS before channel with Capricorn database 2022-11-22_07, the aerdl.dll unpacker handler crashes. This can lead to a scanning engine crash, triggerable remotely by an attacker for denial of service.
F-secure Elements Endpoint Protection -
4
CVSSv2
CVE-2021-33572
A Denial-of-Service (DoS) vulnerability exists in F-Secure Linux Security whereby the FSAVD component used in certain F-Secure products can crash while scanning larger packages/fuzzed files. The exploit can be triggered remotely by an attacker. A successful attack will result in ...
F-secure Linux Security -
F-secure Cloud Protection For Salesforce -
F-secure Elements For Microsoft 365 -
F-secure Endpoint Protection
NA
CVE-2022-28881
A Denial-of-Service (DoS) vulnerability exists in F-Secure Atlant whereby the aerdl.dll component used in certain WithSecure products unpacker function crashes which leads to scanning engine crash. The exploit can be triggered remotely by an attacker.
F-secure Elements Endpoint Detection And Response
F-secure Elements Endpoint Protection
F-secure Atlant
F-secure Internet Gatekeeper
F-secure Linux Security
F-secure Linux Security 64
F-secure Cloud Protection For Salesforce
F-secure Elements Collaboration Protection
NA
CVE-2022-28880
A Denial-of-Service vulnerability exists in the F-Secure Atlant and in certain WithSecure products while scanning fuzzed PE32-bit files it is possible that can crash the scanning engine. The exploit can be triggered remotely by an attacker.
F-secure Elements Endpoint Detection And Response
F-secure Elements Endpoint Protection
F-secure Atlant
F-secure Internet Gatekeeper
F-secure Linux Security
F-secure Linux Security 64
F-secure Cloud Protection For Salesforce
F-secure Elements Collaboration Protection
NA
CVE-2023-27588
Hasura is an open-source product that provides users GraphQL or REST APIs. A path traversal vulnerability has been discovered within Hasura GraphQL Engine prior to versions 1.3.4, 2.55.1, 2.20.1, and 2.21.0-beta1. Projects running on Hasura Cloud were not vulnerable. Self-hosted ...
Hasura Graphql Engine
6.8
CVSSv2
CVE-2014-0197
CFME: CSRF protection vulnerability via permissive check of the referrer header
Redhat Cloudforms 3.0
Redhat Cloudforms Management Engine
4
CVSSv2
CVE-2017-2653
A number of unused delete routes are present in CloudForms prior to 5.7.2.1 which can be accessed via GET requests instead of just POST requests. This could allow an malicious user to bypass the protect_from_forgery XSRF protection causing the routes to be used. This attack would...
Redhat Cloudforms Management Engine
Redhat Cloudforms 4.2
NA
CVE-2023-47263
Certain WithSecure products allow a Denial of Service (DoS) in the antivirus engine when scanning a fuzzed PE32 file. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and...
Withsecure Client Security 15
Withsecure Elements Endpoint Protection
Withsecure Email And Server Security 15
Withsecure Server Security 15
Withsecure Linux Protection 12.0
Withsecure Linux Security 64 12.0
Withsecure Atlant
5
CVSSv2
CVE-2021-33602
A vulnerability affecting the F-Secure Antivirus engine exists when the engine tries to unpack a zip archive (LZW decompression method), and this can crash the scanning engine. The vulnerability can be exploited remotely by an attacker. A successful attack will result in Denial-o...
F-secure Atlant
F-secure Linux Security
F-secure Cloud Protection
F-secure Internet Gatekeeper
NA
CVE-2023-42520
Certain WithSecure products allow a remote crash of a scanning engine via unpacking of crafted data files. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, Wit...
Withsecure Client Security 15
Withsecure Elements Endpoint Protection
Withsecure Email And Server Security 15
Withsecure Server Security 15
Withsecure Linux Protection 12.0
Withsecure Linux Security 64 12.0
Withsecure Atlant 1.0.35-1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »