CVE-2022-28880
4.3 MEDIUMA Denial-of-Service vulnerability was discovered in the F-Secure Atlant and in certain WithSecure products while scanning fuzzed PE32-bit...
Published: 2022-08-05 · Last updated: 2026-06-02
Severity and scoring
- CVSS
- 4.3 MEDIUM
- Vector
- CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:L
- CWE
- CWE-400
Affected products
| Vendor | Product |
|---|---|
| f-secure | atlant, cloud_protection_for_salesforce, elements_collaboration_protection |
Description
A Denial-of-Service vulnerability was discovered in the F-Secure Atlant and in certain WithSecure products while scanning fuzzed PE32-bit files it is possible that can crash the scanning engine. The exploit can be triggered remotely by an attacker.
Source: NVD
References
- [NVD]https://nvd.nist.gov/vuln/detail/CVE-2022-28880
- [Vendor advisory]https://www.f-secure.com/en/home/support/vulnerability-reward-program/hall-of-fame
- [Vendor advisory]https://www.withsecure.com/en/expertise/people
- [Vendor advisory]https://www.f-secure.com/en/home/support/vulnerability-reward-program/hall-of-fame
- [Vendor advisory]https://www.withsecure.com/en/expertise/people
Related CVEs
Same CWE
- CVE-2026-12325 — Denial-of-service in the Graphics: ImageLib component (6.5 MEDIUM)
- CVE-2026-12319 — Denial-of-service in the Audio/Video: Playback component (6.5 MEDIUM)
- CVE-2026-50889 — An input handling flaw in the HTTP refresh token process of LLDAP v0.6.2 allows attackers to cause a Denial of Service (DoS) via sending ... (7.5 HIGH)
- CVE-2026-50882 — An issue in the /api/v0/pastes endpoint of anna-is-cute paste v0.1.1 allows attackers to cause a Denial of Service (DoS) via a crafted PO... (7.5 HIGH)
- CVE-2026-50879 — An issue in the uploadPostHandler component of Andrei Marcu linx-server v2.3.8 allows attackers to cause a Denial of Service (DoS) via a ... (7.5 HIGH)