CVE-2021-40837

 

Published at: - 09-02-2022 02:15

Last modified: - 11-02-2022 09:54

Total changes: - 2

Description

A vulnerability affecting F-Secure antivirus engine before Capricorn update 2022-02-01_01 was discovered whereby decompression of ACE file causes the scanner service to stop. The vulnerability can be exploited remotely by an attacker. A successful attack will result in denial-of-service of the antivirus engine.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

 

Verification logic

 

Reference

• https://www.f-secure.com/en/business/support-and-downloads/security-advisories
• https://www.f-secure.com/en/business/support-and-downloads/security-advisories/cve-2021-40837

 

Keywords

NVD

 

CVE-2021-40837

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures