Arbitrary Code Execution

More information

An arbitrary code execution vulnerability was found in the WithSecure Support Tool. A standard user can craft a special configuration file, which when run by administrator can execute any commands.

This issue was reported to WithSecure through the Vulnerability Reward Program. No known exploit or attack has been seen in the wild.


WithSecure Corporation would like to thank following person for bringing this issue to our attention.

Nasreddine Bencherchali



  • WithSecure Support Tool (fsdiag) embedded within various WithSecure products for Microsoft Windows can be abused to execute arbitrary commands on the system.
  • Status

  • Fixed
  • Action required

  • WithSecure Business Suite administrator need to apply the hotfix manually. All other products are automatically updated.
  • Risk level

  • Medium
  • Fix

  • In all other environments fix has been published through the automatic update channel.
  • Affected products

  • Corporate Products: WithSecure Elements Agent WithSecure MDR WithSecure Client Security * WithSecure Server Security * WithSecure Email and Server Security * Hotfixes for products marked with * can be found at Consumer Products: WithSecure FREEDOME VPN WithSecure SAFE WithSecure KEY WithSecure Internet Security / Anti-Virus
  • Platforms

  • All supported Windows version for the affected products
  • Date issued

  • 9/3/2022
  • Security advisories
  • 2021
  • Medium