Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
clamav clamav vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-20803
A vulnerability in the OLE2 file parser of Clam AntiVirus (ClamAV) versions 0.104.0 up to and including 0.104.2 could allow an unauthenticated, remote malicious user to cause a denial of service condition on an affected device.The vulnerability is due to incorrect use of the real...
Clamav Clamav
NA
CVE-2013-6497
clamscan in ClamAV prior to 0.98.5, when using -a option, allows remote malicious users to cause a denial of service (crash) as demonstrated by the jwplayer.js file.
Clamav Clamav
7.5
CVSSv3
CVE-2019-1789
ClamAV versions before 0.101.2 are susceptible to a denial of service (DoS) vulnerability. An out-of-bounds heap read condition may occur when scanning PE files. An example is Windows EXE and DLL files that have been packed using Aspack as a result of inadequate bound-checking.
Clamav Clamav
5.5
CVSSv3
CVE-2019-1798
A vulnerability in the Portable Executable (PE) file scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and prior could allow an unauthenticated, remote malicious user to cause a denial of service condition on an affected device. The vulnerability is due ...
Clamav Clamav
7.5
CVSSv3
CVE-2019-12625
ClamAV versions before 0.101.3 are susceptible to a zip bomb vulnerability where an unauthenticated attacker can cause a denial of service condition by sending crafted messages to an affected system.
Clamav Clamav
NA
CVE-2004-1876
The "%f" feature in the VirusEvent directive in Clam AntiVirus daemon (clamd) prior to 0.70 allows local users to execute arbitrary commands via shell metacharacters in a file name.
Clam Anti-virus Clamav 0.54
Clam Anti-virus Clamav 0.60
Clam Anti-virus Clamav 0.65
Clam Anti-virus Clamav 0.67
Clam Anti-virus Clamav 0.52
Clam Anti-virus Clamav 0.53
Clam Anti-virus Clamav 0.51
Clam Anti-virus Clamav 0.68
Clam Anti-virus Clamav 0.68.1
NA
CVE-2005-0218
ClamAV 0.80 and previous versions allows remote malicious users to bypass virus scanning via a base64 encoded image in a data: (RFC 2397) URL.
Clam Anti-virus Clamav 0.51
Clam Anti-virus Clamav 0.53
Clam Anti-virus Clamav 0.68
Clam Anti-virus Clamav 0.80
Clam Anti-virus Clamav 0.54
Clam Anti-virus Clamav 0.60
Clam Anti-virus Clamav 0.65
Clam Anti-virus Clamav 0.67
Clam Anti-virus Clamav 0.52
Clam Anti-virus Clamav 0.68.1
NA
CVE-2005-0133
ClamAV 0.80 and previous versions allows remote malicious users to cause a denial of service (clamd daemon crash) via a ZIP file with malformed headers.
Clam Anti-virus Clamav 0.53
Clam Anti-virus Clamav 0.54
Clam Anti-virus Clamav 0.60
Clam Anti-virus Clamav 0.65
Clam Anti-virus Clamav 0.52
Clam Anti-virus Clamav 0.67
Clam Anti-virus Clamav 0.68.1
Clam Anti-virus Clamav 0.51
Clam Anti-virus Clamav 0.68
Clam Anti-virus Clamav 0.80
NA
CVE-2008-1836
The rfc2231 function in message.c in libclamav in ClamAV prior to 0.93 allows remote malicious users to cause a denial of service (crash) via a crafted message that produces a string that is not null terminated, which triggers a buffer over-read.
Clam Anti-virus Clamav 0.90 Rc3
Clam Anti-virus Clamav 0.90rc1
Clam Anti-virus Clamav 0.91
Clam Anti-virus Clamav 0.92
Clam Anti-virus Clamav 0.90 Rc1.1
Clam Anti-virus Clamav 0.90 Rc2
Clam Anti-virus Clamav 0.90
Clam Anti-virus Clamav 0.90.1
NA
CVE-2008-1387
ClamAV prior to 0.93 allows remote malicious users to cause a denial of service (CPU consumption) via a crafted ARJ archive, as demonstrated by the PROTOS GENOME test suite for Archive Formats.
Clam Anti-virus Clamav 0.90 Rc1.1
Clam Anti-virus Clamav 0.90 Rc2
Clam Anti-virus Clamav 0.90 Rc3
Clam Anti-virus Clamav 0.90rc1
Clam Anti-virus Clamav 0.91
Clam Anti-virus Clamav 0.92
Clam Anti-virus Clamav 0.90
Clam Anti-virus Clamav 0.90.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »