CVE Catalog

CVE-2023-39341

LowCVSS 3.3
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.29%

20th percentile — higher than 20% of all known CVEs

Summary

FFRI yarai products and their OEM versions handle exceptional conditions improperly, which may lead to a denial-of-service (DoS) condition. This affects multiple versions of FFRI yarai and related products.

Risk Assessment

The organization may experience service outages, which can impact business operations and customer trust.

Recommendation

It is recommended to update to the latest software versions to minimize the risk of DoS conditions.

Original NVD description (English source)

"FFRI yarai", "FFRI yarai Home and Business Edition" and their OEM products handle exceptional conditions improperly, which may lead to denial-of-service (DoS) condition. Affected products and versions are as follows: FFRI yarai versions 3.4.0 to 3.4.6 and 3.5.0, FFRI yarai Home and Business Edition version 1.4.0, InfoTrace Mark II Malware Protection (Mark II Zerona) versions 3.0.1 to 3.2.2, Zerona / Zerona PLUS versions 3.2.32 to 3.2.36, ActSecure χ versions 3.4.0 to 3.4.6 and 3.5.0, Dual Safe Powered by FFRI yarai version 1.4.1, EDR Plus Pack (Bundled FFRI yarai versions 3.4.0 to 3.4.6 and 3.5.0), and EDR Plus Pack Cloud (Bundled FFRI yarai versions 3.4.0 to 3.4.6 and 3.5.0).

Vulnerability data from NVD (NIST) · CISA KEV · EPSS