CVE-2025-26790

Denial-of-Service (DoS) Vulnerability 

More information

A denial-of-service (DoS) vulnerability was discovered in WithSecure Atlant Product. This issue was reported to WithSecure through the Vulnerability Reward Program. A crash was detected from Atlant when scanning a document file. 

The exploit can be triggered remotely by an attacker. A successful attack will result in denial-of-service (DoS) of the antivirus engine.

 

Contributors

WithSecure would like to thank following person for bringing this issue to our attention.

Antti Levomäki & Christian Jalio from Forcepoint

    Status

  • Fixed

    • Risk level

  • Medium

    • Action required

  • FIX No User action is required. The required fix has been published through automatic update channel with Capricorn verison 2025-01-20_02

    • Affected products

    • All Linux Endpoint Protection products    

                    Linux Security 64 12.0

    • WithSecure Atlant (formerly F-Secure Atlant) = 1.0.35-1

     

    • Platforms

  • All supported platforms for the affected products

    • Date issued

  • 2025-02-07

Short description

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26790