CVE-2022-28881

high

Description

A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant whereby the aerdl.dll component used in certain WithSecure products unpacker function crashes which leads to scanning engine crash. The exploit can be triggered remotely by an attacker.

References

https://www.withsecure.com/en/support/security-advisories

https://www.f-secure.com/en/business/support-and-downloads/security-advisories

Details

Source: Mitre, NVD

Published: 2022-08-10

Updated: 2022-08-12

Risk Information

CVSS v2

Base Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

Severity: High

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H