F-secure Vulnerabilities

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

Not Defined	64
Anti-Malware Software	52
Android App Software	6
SSH Server Software	6
Policy Management Software	2

Product

F-Secure Anti-Virus	28
F-Secure Anti-Virus Internet Gatekeeper	16
F-Secure Atlant	12
F-Secure Safe Browser	10
F-Secure Internet Security	8

Remediation

Official Fix	58
Temporary Fix	0
Workaround	2
Unavailable	0
Not Defined	74

Exploitability

High	0
Functional	0
Proof-of-Concept	50
Unproven	2
Not Defined	82

Access Vector

Not Defined	0
Physical	0
Local	34
Adjacent	6
Network	94

Authentication

Not Defined	0
High	4
Low	38
None	92

User Interaction

Not Defined	0
Required	32
None	102

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	12
≤5	20
≤6	58
≤7	18
≤8	10
≤9	4
≤10	12

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	12
≤5	44
≤6	40
≤7	20
≤8	6
≤9	6
≤10	6

VulDB

≤1	0
≤2	0
≤3	0
≤4	18
≤5	18
≤6	54
≤7	18
≤8	10
≤9	4
≤10	12

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	4
≤7	6
≤8	16
≤9	2
≤10	0

CNA

≤1	0
≤2	0
≤3	0
≤4	2
≤5	26
≤6	4
≤7	2
≤8	0
≤9	0
≤10	0

Vendor

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploit 0-day

<1k	26
<2k	38
<5k	32
<10k	10
<25k	16
<50k	12
<100k	0
≥100k	0

Exploit Today

<1k	128
<2k	2
<5k	2
<10k	2
<25k	0
<50k	0
<100k	0
≥100k	0

Exploit Market Volume

🔴 CTI Activities

Affected Products (43): Anti-Virus (29), Anti-Virus Engine (5), Anti-Virus Internet Gatekeeper (16), Anti-Virus for Workstations (1), AntiVirus (1), Antivirus (3), Antivirus Engine (2), Atlant (9), Client Security (2), Cloud Protection For Salesforce (1), Computer Protection (1), E-Mail (1), Email (1), Endpoint Protection (3), Internet GateKeeper (1), Internet Gatekeeper (7), Internet Security (8), Internet Security 2010 (1), Linux Security (2), Little Flocker (1), Mimosa B5 (2), Mimosa B5c (2), Mimosa C5x (2), Online Scanner (1), PSB Workstation Security (2), Policy Manager (6), Product (2), Radar (2), SAFE (3), SAFE Browser (3), SSH (1), SSH Server (2), SSH server (1), Safe Browser (14), Secure Linux (1), Security Gateway (1), Server Security (4), Support Tool (1), WithSecure (3), WithSecure Endpoint Protection (1), Xfence (1), anti-virus (1), internet gatekeeper (1)

Link to Vendor Website: https://www.f-secure.com/

Published	Base	Temp	Vulnerability	Prod	Exp	Rem	EPSS	CTI	CVE
12/23/2022	6.5	6.2	F-Secure SAFE Browser IDN Homograph unknown vulnerability	Android App Software	Not Defined	Official Fix	0.00063	0.00	CVE-2022-47524
12/13/2022	5.4	5.4	F-Secure Atlant fsicapd denial of service	Unknown	Not Defined	Not Defined	0.00075	0.03	CVE-2022-45871
11/25/2022	5.9	5.8	F-Secure Endpoint Protection Unpacker aerdl.dll denial of service	Unknown	Not Defined	Official Fix	0.00078	0.02	CVE-2022-38166
11/08/2022	5.0	5.0	F-Secure SAFE Browser denial of service	Unknown	Not Defined	Not Defined	0.00097	0.00	CVE-2022-38164
11/07/2022	3.5	3.5	F-Secure SAFE Browser Drag/Drop denial of service	Unknown	Not Defined	Not Defined	0.00080	0.03	CVE-2022-38163
10/26/2022	4.8	4.8	F-Secure Policy Manager cross site scripting	Policy Management Software	Not Defined	Not Defined	0.00129	0.00	CVE-2022-38162
10/13/2022	5.7	5.7	F-Secure/WithSecure Product Unpacker aerdl.dll denial of service	Unknown	Not Defined	Not Defined	0.00097	0.02	CVE-2022-28887
09/24/2022	5.0	5.0	F-Secure/WithSecure Product PE File Unpack aerdl.dll denial of service	Unknown	Not Defined	Not Defined	0.00057	0.00	CVE-2022-28886
09/07/2022	5.2	5.1	F-Secure WithSecure fsicapd denial of service	Unknown	Not Defined	Not Defined	0.00097	0.00	CVE-2022-28885
08/24/2022	4.4	4.4	F-Secure WithSecure aerdl Unpack denial of service	Unknown	Not Defined	Not Defined	0.00089	0.00	CVE-2022-28883
08/24/2022	5.4	5.4	F-Secure WithSecure PE File aegen.dll denial of service	Unknown	Not Defined	Not Defined	0.00089	0.03	CVE-2022-28882
08/11/2022	4.3	4.3	F-Secure Atlant Scanning Engine aerdl.dll denial of service	Unknown	Not Defined	Not Defined	0.00101	0.00	CVE-2022-28881
08/05/2022	5.4	5.4	F-Secure Atlant PE32-Bit File denial of service	Unknown	Not Defined	Not Defined	0.00070	0.00	CVE-2022-28880
07/23/2022	5.7	5.7	F-Secure Atlant Scanning Engine aepack.dll denial of service	Unknown	Not Defined	Not Defined	0.00101	0.00	CVE-2022-28879
07/23/2022	5.7	5.7	F-Secure Atlant APK File denial of service	Unknown	Not Defined	Not Defined	0.00101	0.02	CVE-2022-28878
07/22/2022	5.1	5.1	F-Secure WithSecure Endpoint Protection access control	Unknown	Not Defined	Not Defined	0.00042	0.02	CVE-2022-28877
07/14/2022	5.4	5.4	F-Secure Atlant Scanning Engine aeheur.dll denial of service	Unknown	Not Defined	Not Defined	0.00101	0.00	CVE-2022-28876
05/26/2022	4.3	4.3	F-Secure Atlant Scanning Engine denial of service	Unknown	Not Defined	Not Defined	0.00101	0.00	CVE-2022-28875
05/23/2022	4.8	4.7	F-Secure Endpoint Protection PE32-Bit File heap-based overflow	Unknown	Not Defined	Official Fix	0.00101	0.00	CVE-2022-28874
05/12/2022	5.3	5.3	F-Secure Safe Browser Address Bar clickjacking	Unknown	Not Defined	Not Defined	0.00201	0.04	CVE-2022-28872
05/12/2022	5.3	5.3	F-Secure Safe Browser Address Bar clickjacking	Unknown	Not Defined	Not Defined	0.00078	0.00	CVE-2022-28873
04/25/2022	4.3	4.2	F-Secure Atlant fsicapd resource consumption	Unknown	Not Defined	Official Fix	0.00101	0.04	CVE-2022-28871
04/15/2022	5.3	5.3	F-Secure Safe Browser Address Bar clickjacking	Android App Software	Not Defined	Not Defined	0.00078	0.00	CVE-2022-28868
04/15/2022	5.3	5.3	F-Secure Safe Browser Address Bar clickjacking	Unknown	Not Defined	Not Defined	0.00078	0.00	CVE-2022-28870
04/15/2022	5.3	5.3	F-Secure Safe Browser Address Bar clickjacking	Unknown	Not Defined	Not Defined	0.00078	0.00	CVE-2022-28869