Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
clamav clamav vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2020-3123
A vulnerability in the Data-Loss-Prevention (DLP) module in Clam AntiVirus (ClamAV) Software versions 0.102.1 and 0.102.0 could allow an unauthenticated, remote malicious user to cause a denial of service condition on an affected device. The vulnerability is due to an out-of-boun...
Clamav Clamav 0.102.0
Clamav Clamav 0.102.1
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.10
7.5
CVSSv3
CVE-2013-7089
ClamAV prior to 0.97.7: dbg_printhex possible information leak
Clamav Clamav
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Fedoraproject Fedora 17
Fedoraproject Fedora 18
7.5
CVSSv3
CVE-2019-12625
ClamAV versions before 0.101.3 are susceptible to a zip bomb vulnerability where an unauthenticated attacker can cause a denial of service condition by sending crafted messages to an affected system.
Clamav Clamav
7.5
CVSSv3
CVE-2019-1789
ClamAV versions before 0.101.2 are susceptible to a denial of service (DoS) vulnerability. An out-of-bounds heap read condition may occur when scanning PE files. An example is Windows EXE and DLL files that have been packed using Aspack as a result of inadequate bound-checking.
Clamav Clamav
7.5
CVSSv3
CVE-2018-11196
Mahara 17.04 prior to 17.04.8 and 17.10 prior to 17.10.5 and 18.04 prior to 18.04.1 can be used as medium to transmit viruses by placing infected files into a Leap2A archive and uploading that to Mahara. In contrast to other ZIP files that are uploaded, ClamAV (when activated) do...
Mahara Mahara
Mahara Mahara 18.04.0
7.5
CVSSv3
CVE-2017-12380
ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper input validation checking mechanisms in ...
Debian Debian Linux 7.0
Clamav Clamav
7.5
CVSSv3
CVE-2017-12374
The ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to a lack of input validation checking mechanism...
Debian Debian Linux 7.0
Clamav Clamav
7.5
CVSSv3
CVE-2017-12375
The ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to a lack of input validation checking mechanism...
Debian Debian Linux 7.0
Clamav Clamav
7.5
CVSSv3
CVE-2016-1405
libclamav in ClamAV (aka Clam AntiVirus), as used in Advanced Malware Protection (AMP) on Cisco Email Security Appliance (ESA) devices prior to 9.7.0-125 and Web Security Appliance (WSA) devices prior to 9.0.1-135 and 9.1.x prior to 9.1.1-041, allows remote malicious users to cau...
Clamav Clamav
Cisco Email Security Appliance 9.6.0-042
Cisco Web Security Appliance 9.5.0-284
Cisco Web Security Appliance 9.1.0-070
Cisco Web Security Appliance 8.8.0-085
7.5
CVSSv3
CVE-2007-0897
Clam AntiVirus ClamAV prior to 0.90 does not close open file descriptors under certain conditions, which allows remote malicious users to cause a denial of service (file descriptor consumption and failed scans) via CAB archives with a cabinet header record length of zero, which c...
Clamav Clamav
Apple Mac Os X Server
Debian Debian Linux 3.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
hard-coded
CVE-2024-27202
NULL pointer dereference
CVE-2024-28075
CVE-2024-33608
CVE-2024-28889
CVE-2024-34572
template injection
CVE-2024-34351
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »