CVE-2022-28883 : Security Advisory and Response
Learn about CVE-2022-28883, a Denial-of-Service vulnerability affecting F-Secure & WithSecure products, allowing remote attackers to crash the scanning engine. Read more for mitigation details.
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure & WithSecure products. An attacker can remotely trigger a crash in the aerdl unpack function, potentially leading to a scanning engine crash. The impact is rated as LOW with a CVSS base score of 3.5.
Understanding CVE-2022-28883
This CVE refers to a DoS vulnerability in F-Secure & WithSecure products, allowing attackers to crash the scanning engine remotely.
What is CVE-2022-28883?
CVE-2022-28883 is a Denial-of-Service vulnerability found in various F-Secure and WithSecure products, affecting all versions.
The Impact of CVE-2022-28883
The vulnerability allows for a remote attacker to crash the aerdl unpack function, potentially causing a scanning engine crash. The base severity is rated as LOW.
Technical Details of CVE-2022-28883
The vulnerability is characterized by a LOW attack complexity and requires HIGH privileges. User interaction is also REQUIRED for exploitation.
Vulnerability Description
The issue stems from the way the aerdl unpack function behaves in the affected F-Secure & WithSecure products, leading to a DoS condition.
Affected Systems and Versions
All F-Secure and WithSecure Endpoint Protection products for Windows & Mac, F-Secure Linux Security, F-Secure Atlant, F-Secure Internet Gatekeeper, WithSecure Cloud Protection for Salesforce, and WithSecure Collaboration Protection are impacted.
Exploitation Mechanism
Attackers can exploit this vulnerability remotely by triggering a crash in the aerdl unpack function, potentially disrupting the scanning engine.
Mitigation and Prevention
To address CVE-2022-28883, a fix has been released through an automatic update channel with the Capricorn database on 2022-08-10_06.
Immediate Steps to Take
Users are advised to apply the available fix to prevent any potential exploitation of this vulnerability in F-Secure & WithSecure products.
Long-Term Security Practices
Regularly update and patch the affected products to ensure protection against known vulnerabilities.
Patching and Updates
Stay informed about security advisories and apply patches promptly to avoid any security breaches.