F-Secure and WithSecure updates available
The updates fix several vulnerabilities which can crash F-Secure and WithSecure.
Users need to update their antivirus software from WithSecure and F-Secure as vulnerabilities have been discovered and the updates fix these vulnerabilities. Attackers can crash F-Secure and WithSecure by using the vulnerabilities and users should install the published updates as soon as possible.
Regarding the discovered vulnerabilities the company gives more information in the according Security advisories. The details in the identifiers CVE-2022-28876, CVE-2022-28878 and CVE-2022-28879 describe the vulnerabilities found.
The problems were rated with the Risk level Medium. Attackers can use prepared files to remotely crash the scan engine. The system would thus hardly be protected against potential further attacks.
All WithSecure products for Windows and Mac endpoints are affected, as well as F-Secure Linux Security 64, F-Secure Linux Security 32, F-Secure Atlant, F-Secure Internet Gatekeeper, WithSecure Cloud Protection for Salesforce and WithSecure Collaboration Protection.
No attacks involving these security problems are known so far. But there is already a patch. Users who have activated automatic updates therefore do not have to react any further. If this is not the case, the installation should be carried out as soon as possible.