Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
clamav clamav vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2017-6418
libclamav/message.c in ClamAV 0.99.2 allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted e-mail message.
Clamav Clamav 0.99.2
7.8
CVSSv3
CVE-2017-6419
mspack/lzxd.c in libmspack 0.5alpha, as used in ClamAV 0.99.2, allows remote malicious users to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted CHM file.
Libmspack Project Libmspack 0.5
5.5
CVSSv3
CVE-2017-6420
The wwunpack function in libclamav/wwunpack.c in ClamAV 0.99.2 allows remote malicious users to cause a denial of service (use-after-free) via a crafted PE file with WWPack compression.
Clamav Clamav 0.99.2
5.5
CVSSv3
CVE-2017-11423
The cabd_read_string function in mspack/cabd.c in libmspack 0.5alpha, as used in ClamAV 0.99.2 and other products, allows remote malicious users to cause a denial of service (stack-based buffer over-read and application crash) via a crafted CAB file.
Libmspack Project Libmspack 0.5
9.8
CVSSv3
CVE-2012-6706
A VMSF_DELTA memory corruption exists in unrar prior to 5.5.5, as used in Sophos Anti-Virus Threat Detection Engine prior to 3.37.2 and other products, that can lead to arbitrary code execution. An integer overflow can be caused in DataSize+CurChannel. The result is a negative va...
Sophos Threat Detection Engine
Rarlab Unrar
5.5
CVSSv3
CVE-2016-1372
ClamAV (aka Clam AntiVirus) prior to 0.99.2 allows remote malicious users to cause a denial of service (application crash) via a crafted 7z file.
Clamav Clamav
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
5.5
CVSSv3
CVE-2016-1371
ClamAV (aka Clam AntiVirus) prior to 0.99.2 allows remote malicious users to cause a denial of service (application crash) via a crafted mew packer executable.
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Clamav Clamav
7.5
CVSSv3
CVE-2016-1405
libclamav in ClamAV (aka Clam AntiVirus), as used in Advanced Malware Protection (AMP) on Cisco Email Security Appliance (ESA) devices prior to 9.7.0-125 and Web Security Appliance (WSA) devices prior to 9.0.1-135 and 9.1.x prior to 9.1.1-041, allows remote malicious users to cau...
Clamav Clamav
Cisco Email Security Appliance 9.6.0-042
Cisco Web Security Appliance 9.5.0-284
Cisco Web Security Appliance 9.1.0-070
Cisco Web Security Appliance 8.8.0-085
NA
CVE-2015-2222
ClamAV prior to 0.98.7 allows remote malicious users to cause a denial of service (crash) via a crafted petite packed file.
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 15.1
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 14.10
Clamav Clamav
NA
CVE-2015-2668
ClamAV prior to 0.98.7 allows remote malicious users to cause a denial of service (infinite loop) via a crafted xz archive file.
Clamav Clamav
Canonical Ubuntu Linux 14.10
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »