Denial-of-Service (DoS) Vulnerability
Description
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant whereby the SAVAPI component used in certain F-Secure products can crash while scanning fuzzed files. The exploit can be triggered remotely by an attacker. A successful attack will result in Denial-of-Service (DoS) of the Anti-Virus engine.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
F-Secure Atlant SAVAPI component crashes when scanning specially crafted files, enabling remote denial of service.
Vulnerability
A Denial-of-Service (DoS) vulnerability exists in the F-Secure Atlant SAVAPI component used in certain F-Secure products. The component can crash while scanning fuzzed files. The affected versions are not publicly specified in the available references [1].
Exploitation
An attacker can trigger the vulnerability remotely by providing a maliciously crafted file that, when scanned by the SAVAPI component, causes a crash. No authentication or special privileges are required; the attack can be delivered via typical infection vectors such as email attachments, web downloads, or network shares [1].
Impact
A successful attack results in a Denial-of-Service (DoS) condition, crashing the Anti-Virus engine. This leaves the system unprotected until the engine is restarted, potentially exposing the system to further threats [1].
Mitigation
F-Secure has addressed this vulnerability in security updates. Users are advised to apply the latest patches for all affected F-Secure products. The specific fixed version numbers are not disclosed in the provided references [1]. No CISA KEV listing or workaround is mentioned.
AI Insight generated on May 27, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- F-Secure/F-Secure endpoint protection products on Windows, Mac and Linux Securityv5Range: All Version
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- www.f-secure.com/en/business/programs/vulnerability-reward-program/hall-of-famemitrex_refsource_MISC
- www.f-secure.com/en/business/support-and-downloads/security-advisoriesmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.