Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2021-44750
PUBLISHED
More InfoOfficial Page
Assigner-F-SecureUS
Assigner Org ID-126858f1-1b65-4b74-81ca-7034f7f7723f
View Known Exploited Vulnerability (KEV) details
Published At-09 Mar, 2022 | 11:38
Updated At-04 Aug, 2024 | 04:32
Rejected At-
▼CVE Numbering Authority (CNA)
Arbitrary Code Execution

An arbitrary code execution vulnerability was found in the F-Secure Support Tool. A standard user can craft a special configuration file, which when run by administrator can execute any commands.

Affected Products
Vendor
F-Secure CorporationF-Secure
Product
F-Secure Elements Agent, F-Secure MDR, F-Secure Client Security, F-Secure Server Security, F-Secure Email and Server Security, F-Secure Freedome VPN, F-Secure SAFE, F-Secure KEY, and F-Secure Internet Security / Anti-Virus
Versions
Affected
  • All Version
Problem Types
TypeCWE IDDescription
textN/AArbitrary Code Execution
Type: text
CWE ID: N/A
Description: Arbitrary Code Execution
Metrics
VersionBase scoreBase severityVector
3.16.4MEDIUM
CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H
Version: 3.1
Base score: 6.4
Base severity: MEDIUM
Vector:
CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions

MITIGATION FACTOR User interaction is required prior to exploitation. Administrative privileges is required to run arbitrary commands in the system.

Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://www.f-secure.com/en/business/support-and-downloads/security-advisories
x_refsource_MISC
https://www.f-secure.com/en/business/support-and-downloads/security-advisories/cve-2021-44750
x_refsource_MISC
Hyperlink: https://www.f-secure.com/en/business/support-and-downloads/security-advisories
Resource:
x_refsource_MISC
Hyperlink: https://www.f-secure.com/en/business/support-and-downloads/security-advisories/cve-2021-44750
Resource:
x_refsource_MISC
▼Authorized Data Publishers (ADP)
CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://www.f-secure.com/en/business/support-and-downloads/security-advisories
x_refsource_MISC
x_transferred
https://www.f-secure.com/en/business/support-and-downloads/security-advisories/cve-2021-44750
x_refsource_MISC
x_transferred
Hyperlink: https://www.f-secure.com/en/business/support-and-downloads/security-advisories
Resource:
x_refsource_MISC
x_transferred
Hyperlink: https://www.f-secure.com/en/business/support-and-downloads/security-advisories/cve-2021-44750
Resource:
x_refsource_MISC
x_transferred
Details not found