Security advisories

Detailed information on public vulnerabilities found in F‑Secure products

CVE IDDATE ISSUEDADVISORY TITLEAFFECTED PRODUCTS
CVE-2024-237642024-01-31Local privilege escalation vulnerabilityAll F‑Secure end­point protection products for Windows
CVE-2023-471722024-01-11Local privilege escalation vulnerabilityAll F‑Secure end­point protection products for Windows
 2023-05-04Universal Cross-Site Scripting (UXSS) In Safe Browser iOS Version 21.0.1F‑Secure SAFE Browser for iOS
 2023-05-03F‑Secure SAFE Browser Sandbox BypassF‑Secure SAFE for iOS
CVE-2023-437652023-02-15Denial-of-Service (DoS) VulnerabilityAll F‑Secure end­point protection products for Windows and Mac
CVE-2023-452002023-01-19Denial-of-Service (DoS) VulnerabilityAll F‑Secure end­point protection products for Windows and Mac
CVE-2022-475242022-12-23F‑Secure Internet Security browser for Android vulnerable to an IDN Homograph attackF‑Secure Internet Security Browser for Android Version 19.1 and below
CVE-2022-381662022-11-25Multiple Denial-of-Service (DoS) VulnerabilityAll F‑Secure end­point protection products for Windows and Mac
CVE-2022-381642022-10-28URL Spoofing using Long sub-domain in F‑Secure Internet Security Browser for Android & iOSF‑Secure Internet Security Browser for Android and iOS Version 19.0 and below
CVE-2022-381632022-10-28F‑Secure Internet Security browser vulnerable to spoofing done by drag and dropF‑Secure Internet Security Browser for Android Version 19.0 and below
CVE-2022-2888730-Sep-2022Multiple Denial-of-Service (DoS) VulnerabilitiesAll F‑Secure end­point protection products for Windows and Mac
CVE-2022-2888619-Sep-2022Denial-of-Service (DoS) VulnerabilityAll F‑Secure end­point protection products for Windows running on 32-bit operating system
CVE-2022-2888405-Sep-2022Denial-of-Service (DoS) VulnerabilityAll F‑Secure end­point protection products for Windows and Mac
CVE-2022-2888323-Aug-2022Denial-of-Service (DoS) VulnerabilityAll F‑Secure end­point protection products for Windows and Mac
CVE-2022-2888223-Aug-2022Denial-of-Service (DoS) VulnerabilityAll F‑Secure end­point protection products for Windows and Mac
CVE-2022-2888110-Aug-2022Denial-of-Service (DoS) VulnerabilityAll F‑Secure end­point protection products for Windows and Mac
CVE-2022-2888003-Aug-2022Denial-of-Service (DoS) VulnerabilityAll F‑Secure end­point protection products for Windows and Mac
CVE-2022-2887922-Jul-2022Denial-of-Service (DoS) VulnerabilityAll F‑Secure end­point protection products for Mac
CVE-2022-2887822-Jul-2022Denial-of-Service (DoS) VulnerabilityAll F‑Secure end­point protection products for Windows and Mac
CVE-2022-2887721-Jul-2022Local Privilege Escalation Vulnerability in F‑Secure Windows End­point ProductsAll F‑Secure end­point protection products for Windows
CVE-2022-2887613-Jul-2022Denial-of-Service (DoS) VulnerabilityAll F‑Secure end­point protection products for Windows and Mac
CVE-2022-2887525-May-2022Denial-of-Service (DoS) VulnerabilityAll F‑Secure end­point protection products for Windows and Mac
CVE-2022-2887423-May-2022Multiple Denial-of-Service (DoS) VulnerabilitiesAll F‑Secure end­point protection products for Windows and Mac
CVE-2022-2887312-May-2022Multiple Address Bar Spoofing Vulnerabilities in F‑Secure Internet Security Browser for AndroidF‑Secure Internet Security Browser for Android Version 19.0 and below
CVE-2022-2887212-May-2022Address Bar Spoofing Vulnerability in F‑Secure Internet Security Browser for AndroidF‑Secure Internet Security Browser for Android Version 19.0 and below
CVE-2022-2887125-Apr-2022Denial-of-Service (DoS) VulnerabilityAll F‑Secure end­point protection products for Windows and Mac
CVE-2022-2887014-Apr-2022Address Bar Spoofing Vulnerability in F‑Secure Internet Security Browser for AndroidF‑Secure Internet Security Browser for Android Version 18.6 and below
CVE-2022-2886914-Apr-2022Address Bar Spoofing Vulnerability in F‑Secure Internet Security Browser for AndroidF‑Secure Internet Security Browser for Android Version 18.6 and below
CVE-2022-2886814-Apr-2022Address Bar Spoofing Vulnerability in F‑Secure Internet Security Browser for AndroidF‑Secure Internet Security Browser for Android Version 18.6 and below
CVE-2021-4475125-Mar-2022F‑Secure Internet Security Browser vulnerable to USSD attacksF‑Secure Internet Security Browser for Android Version 18.5 and below
CVE-2021-4475009-Mar-2022Arbitrary Code ExecutionF‑Secure VPN, F‑Secure Internet Security, F‑Secure KEY, and F‑Secure Internet Security/Anti-Virus
CVE-2021-4474903-Mar-2022Universal Cross-Site Scripting Vulnerability in F‑Secure Internet Security Browser Protection for AndroidF‑Secure Internet Security Browser for Android Version 18.5
CVE-2021-4474803-Mar-2022Universal Cross-Site Scripting Vulnerability in F‑Secure Internet Security Browser Protection for AndroidF‑Secure Internet Security Browser for Android Version 18.5

Vulnerability Reward Program

Report a vulnerability found in F‑Secure services and products.

Hall of fame

Researchers who have helped make our products safer.