Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
clamav clamav vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-20380
A vulnerability in the HTML parser of ClamAV could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to an issue in the C to Rust foreign function interface. An attacker could exploit this ...
NA
CVE-2024-20328
A vulnerability in the VirusEvent feature of ClamAV could allow a local malicious user to inject arbitrary commands with the privileges of the application service account.The vulnerability is due to unsafe handling of file names. A local attacker could exploit this vulnerability ...
7.5
CVSSv3
CVE-2024-20290
A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to an incorrect check for end-of-string values during scanning, which may r...
Cisco Secure Endpoint Private Cloud
Cisco Secure Endpoint
Fedoraproject Fedora 38
Fedoraproject Fedora 39
1 Article
7.5
CVSSv3
CVE-2023-20212
A vulnerability in the AutoIt module of ClamAV could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to a logic error in the memory management of an affected device. An attacker could ex...
Cisco Secure Endpoint Private Cloud
Cisco Secure Endpoint
7.5
CVSSv3
CVE-2023-20197
A vulnerability in the filesystem image parser for Hierarchical File System Plus (HFS+) of ClamAV could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to an incorrect check for completi...
Cisco Secure Endpoint Private Cloud
Cisco Secure Endpoint
Fedoraproject Fedora 38
5.3
CVSSv3
CVE-2023-20052
On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A vulnerability in the DMG file parser of ClamAV versions 1.0.0 and previous versions, 0.105.1 and previous versions, and 0.103.7 and previous versions could allow an unauthenticated, remot...
Cisco Secure Endpoint Private Cloud
Cisco Secure Endpoint
Clamav Clamav 1.0.0
Clamav Clamav
Stormshield Stormshield Network Security
3 Github repositories
1 Article
9.8
CVSSv3
CVE-2023-20032
On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A vulnerability in the HFS+ partition file parser of ClamAV versions 1.0.0 and previous versions, 0.105.1 and previous versions, and 0.103.7 and previous versions could allow an unauthentic...
Cisco Web Security Appliance
Cisco Secure Endpoint Private Cloud
Cisco Secure Endpoint
Clamav Clamav 1.0.0
Clamav Clamav
Stormshield Stormshield Network Security
2 Github repositories
1 Article
7.5
CVSSv3
CVE-2022-20803
A vulnerability in the OLE2 file parser of Clam AntiVirus (ClamAV) versions 0.104.0 up to and including 0.104.2 could allow an unauthenticated, remote malicious user to cause a denial of service condition on an affected device.The vulnerability is due to incorrect use of the real...
Clamav Clamav
7.8
CVSSv3
CVE-2022-20792
A vulnerability in the regex module used by the signature database load module of Clam AntiVirus (ClamAV) versions 0.104.0 up to and including 0.104.2 and LTS version 0.103.5 and prior versions could allow an authenticated, local malicious user to crash ClamAV at database load ti...
Clamav Clamav
5.5
CVSSv3
CVE-2022-20796
On May 4, 2022, the following vulnerability in the ClamAV scanning library versions 0.103.5 and previous versions and 0.104.2 and previous versions was disclosed: A vulnerability in Clam AntiVirus (ClamAV) versions 0.103.4, 0.103.5, 0.104.1, and 0.104.2 could allow an authenticat...
Clamav Clamav 0.103.4
Clamav Clamav 0.103.5
Clamav Clamav 0.104.1
Clamav Clamav 0.104.2
Cisco Secure Endpoint
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Debian Debian Linux 9.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
firmware
CVE-2006-4304
CVE-2024-32878
CVE-2024-31502
XSS
CVE-2024-3059
CVE-2024-33692
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »