CVE-2023-43767

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Sep 22, 2023
Updated: Sep 26, 2023

Summary

CVE-2023-43767 is a Denial of Service vulnerability affecting several WithSecure products, including WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements Endpoint Protection for Mac 17 and later, Linux Security 64 12.0, Linux Protection 12.0, and WithSecure Atlant (formerly F-Secure Atlant) 1.0.35-1. An attacker can exploit this vulnerability by sending specially crafted aepack archive files to the affected systems, causing them to become unresponsive and unavailable for legitimate use. This issue poses a significant risk to organizations and individuals using the listed WithSecure products and highlights the importance of prompt patching to protect against potential attacks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share