CVE-2022-38165
published 2022-11-17CVE-2022-38165: Arbitrary file write in F-Secure Policy Manager through 2022-08-10 allows unauthenticated users to write the file with the contents in arbitrary locations on…
PriorityP258critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
0.83%
52.9th percentile
Arbitrary file write in F-Secure Policy Manager through 2022-08-10 allows unauthenticated users to write the file with the contents in arbitrary locations on the F-Secure Policy Manager Server.
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
WithSecure up to 2022-08-10 denial of service (EUVD-2022-40762)
vuldb·2026-06-22·CVSS 9.8
CVE-2022-38165 [CRITICAL] WithSecure up to 2022-08-10 denial of service (EUVD-2022-40762)
A vulnerability was found in WithSecure up to 2022-08-10. It has been declared as problematic. This vulnerability affects unknown code. Executing a manipulation can lead to denial of service.
This vulnerability appears as CVE-2022-38165. The attacker needs to be present on the local network. There is no available exploit.
GHSA
GHSA-7gc4-cwgf-384p: WithSecure through 2022-08-10 allows attackers to cause a denial of service (issue 4 of 5)
ghsa_unreviewed·2022-11-18
CVE-2022-38165 [CRITICAL] CWE-22 GHSA-7gc4-cwgf-384p: WithSecure through 2022-08-10 allows attackers to cause a denial of service (issue 4 of 5)
WithSecure through 2022-08-10 allows attackers to cause a denial of service (issue 4 of 5).
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2022-11-17
Published