CVE-2023-47263

Certain WithSecure products allow a Denial of Service (DoS) in the antivirus engine when scanning a fuzzed PE32 file. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements Endpoint Protection for Mac 17 and later, WithSecure Linux Security 64 12.0, WithSecure Linux Protection 12.0, and WithSecure Atlant (formerly F-Secure Atlant) 15 and later.

Published: Nov 16, 2023
Updated: Dec 2, 2023
CVE: CVE-2023-47263
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.5
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
withsecure / client_security	15	15.x
withsecure / elements_endpoint_protection	17	17.x
withsecure / email_and_server_security	15	15.x
withsecure / server_security	15	15.x
withsecure / linux_protection	12.0	12.0.x
withsecure / linux_security_64	12.0	12.0.x
withsecure / atlant	15.0	15.0.x

https://www.withsecure.com/en/support/security-advisories/cve-2023-47263

Vulnerability Database

289,697

CVE-2023-47263