CVE-2021-44747

A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Linux Security whereby the Fmlib component used in certain F-Secure products can crash while scanning fuzzed files. The exploit can be triggered remotely by an attacker. A successful attack will result in Denial-of-Service of the Anti-Virus engine.

Published: Mar 1, 2022
Updated: Apr 14, 2023
CVE: CVE-2021-44747
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.5
AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:N/I:N/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
f-secure / security_cloud	-	2022-02-23_01
f-secure / internet_gatekeeper	-	2022-02-23_01.x
f-secure / atlant	-	2022-02-23_01
f-secure / linux_security	-	2022-02-23_01
f-secure / elements_endpoint_protection	-	2022-02-23_01

https://www.f-secure.com/en/business/support-and-downloads/security-advisories

Vulnerability Database

CVE-2021-44747

Deep Security Visibility Without the Complexity