← back
CVE-2022-28882

Denial-of-Service (DoS) Vulnerability

CVSS 4.3 MEDIUMEPSS 0.4%
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure & WithSecure products whereby the aegen.dll will go into an infinite loop when unpacking PE files. This eventually leads to scanning engine crash. The exploit can be triggered remotely by an attacker.
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:L
Affected products
F-Secure and WithSecure · All F-Secure and WithSecure Endpoint Protection products for Windows & Mac F-Secure Linux Security (32-bit) F-Secure Linux Security (64-bit) F-Secure Atlant F-Secure Internet Gatekeeper WithSecure Cloud Protection for Salesforce WithSecure Collaboration Protection

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.withsecure.com/en/support/security-advisories