Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
clamav vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-20792
A vulnerability in the regex module used by the signature database load module of Clam AntiVirus (ClamAV) versions 0.104.0 up to and including 0.104.2 and LTS version 0.103.5 and prior versions could allow an authenticated, local malicious user to crash ClamAV at database load ti...
Clamav Clamav
NA
CVE-2022-20803
A vulnerability in the OLE2 file parser of Clam AntiVirus (ClamAV) versions 0.104.0 up to and including 0.104.2 could allow an unauthenticated, remote malicious user to cause a denial of service condition on an affected device.The vulnerability is due to incorrect use of the real...
Clamav Clamav
890
VMScore
CVE-2008-3914
Multiple unspecified vulnerabilities in ClamAV prior to 0.94 have unknown impact and attack vectors related to file descriptor leaks on the "error path" in (1) libclamav/others.c and (2) libclamav/sis.c.
Clamav Clamav
383
VMScore
CVE-2019-1798
A vulnerability in the Portable Executable (PE) file scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and prior could allow an unauthenticated, remote malicious user to cause a denial of service condition on an affected device. The vulnerability is due ...
Clamav Clamav
445
VMScore
CVE-2019-1789
ClamAV versions before 0.101.2 are susceptible to a denial of service (DoS) vulnerability. An out-of-bounds heap read condition may occur when scanning PE files. An example is Windows EXE and DLL files that have been packed using Aspack as a result of inadequate bound-checking.
Clamav Clamav
445
VMScore
CVE-2019-12625
ClamAV versions before 0.101.3 are susceptible to a zip bomb vulnerability where an unauthenticated attacker can cause a denial of service condition by sending crafted messages to an affected system.
Clamav Clamav
668
VMScore
CVE-2009-1241
Unspecified vulnerability in ClamAV prior to 0.95 allows remote malicious users to bypass detection of malware via a modified RAR archive.
Clamav Clamav
385
VMScore
CVE-2008-1387
ClamAV prior to 0.93 allows remote malicious users to cause a denial of service (CPU consumption) via a crafted ARJ archive, as demonstrated by the PROTOS GENOME test suite for Archive Formats.
Clam Anti-virus Clamav 0.92
Clam Anti-virus Clamav 0.90rc1
Clam Anti-virus Clamav 0.90.1
Clam Anti-virus Clamav 0.91
Clam Anti-virus Clamav 0.90
Clam Anti-virus Clamav 0.90 Rc1.1
Clam Anti-virus Clamav 0.90 Rc2
Clam Anti-virus Clamav 0.90 Rc3
383
VMScore
CVE-2008-1836
The rfc2231 function in message.c in libclamav in ClamAV prior to 0.93 allows remote malicious users to cause a denial of service (crash) via a crafted message that produces a string that is not null terminated, which triggers a buffer over-read.
Clam Anti-virus Clamav 0.92
Clam Anti-virus Clamav 0.90rc1
Clam Anti-virus Clamav 0.90.1
Clam Anti-virus Clamav 0.91
Clam Anti-virus Clamav 0.90
Clam Anti-virus Clamav 0.90 Rc1.1
Clam Anti-virus Clamav 0.90 Rc2
Clam Anti-virus Clamav 0.90 Rc3
445
VMScore
CVE-2005-1922
The MS-Expand file handling in Clam AntiVirus (ClamAV) prior to 0.86 allows remote malicious users to cause a denial of service (file descriptor and memory consumption) via a crafted file that causes repeated errors in the cli_msexpand function.
Clam Anti-virus Clamav 0.84 Rc1
Clam Anti-virus Clamav 0.82
Clam Anti-virus Clamav 0.85.1
Clam Anti-virus Clamav 0.85
Clam Anti-virus Clamav 0.81
Clam Anti-virus Clamav 0.83
Clam Anti-virus Clamav 0.84 Rc2
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »