CVE-2022-28871

Summary

A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant whereby the fsicapd component used in certain F-Secure products while scanning larger packages/fuzzed files consume too much memory eventually can crash the scanning engine. The exploit can be triggered remotely by an attacker.

Affected Software

VendorProductVersion RangeStatus
F-SecureAll F-Secure Endpoint Protection products on Windows and Mac F-Secure Linux Security (32-bit) F-Secure Linux Security 64 F-Secure Atlant F-Secure Internet Gatekeeper F-Secure Cloud Protection for SalesforceAll Versionaffected

Weaknesses

  • Denial of Service Vulnerability

ADP Enrichment

CVE Program Container

Additional References

References