Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2023-47172: CVE-2023-NNN4

Certain WithSecure products allow Local Privilege Escalation. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, and WithSecure Elements Endpoint Protection 17 and later.

CVE
Open in Source
#vulnerability#windows#microsoft

On October 26, 2023, a high severity vulnerability was discovered in WithSecure Endpoint Protection solutions for Microsoft Windows.

During investigation, we found that the affected component is used in the following WithSecure™ products:

  • WithSecure Client Security 15 onwards

  • WithSecure Server Security 15 onwards

  • WithSecure Email and Server Security 15 onwards

  • WithSecure Elements Endpoint Protection 17 onwards

This vulnerability allows for a local user with administrator privileges to corrupt kernel memory, leading to potential local privilege escalation.

WithSecure is not aware of any known exploits for this vulnerability.

We will update the advisory page as additional information becomes available.

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE