Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
clamav vulnerabilities and exploits
(subscribe to this query)
3.3
CVSSv3
CVE-2018-0361
ClamAV prior to 0.100.1 lacks a PDF object length check, resulting in an unreasonably long time to parse a relatively small file.
Clamav Clamav
Debian Debian Linux 8.0
7.5
CVSSv3
CVE-2021-1405
A vulnerability in the email parsing module in Clam AntiVirus (ClamAV) Software version 0.103.1 and all prior versions could allow an unauthenticated, remote malicious user to cause a denial of service condition on an affected device. The vulnerability is due to improper variable...
Clamav Clamav
Debian Debian Linux 9.0
NA
CVE-2005-2450
Multiple integer overflows in the (1) TNEF, (2) CHM, or (3) FSG file format processors in libclamav for Clam AntiVirus (ClamAV) 0.86.1 and previous versions allow remote malicious users to gain privileges via a crafted e-mail message.
Clam Anti-virus Clamav 0.85.1
Clam Anti-virus Clamav 0.85
Clam Anti-virus Clamav 0.86
NA
CVE-2005-2056
The Quantum archive decompressor in Clam AntiVirus (ClamAV) prior to 0.86.1 allows remote malicious users to cause a denial of service (application crash) via a crafted Quantum archive.
Clam Anti-virus Clamav 0.85.1
Clam Anti-virus Clamav 0.85
Clam Anti-virus Clamav 0.86
NA
CVE-2012-1419
The TAR file parser in ClamAV 0.96.4 and Quick Heal (aka Cat QuickHeal) 11.00 allows remote malicious users to bypass malware detection via a POSIX TAR file with an initial [aliases] character sequence. NOTE: this may later be SPLIT into multiple CVEs if additional information is...
Clamav Clamav 0.96.4
Cat Quick Heal 11.00
7.5
CVSSv3
CVE-2020-3123
A vulnerability in the Data-Loss-Prevention (DLP) module in Clam AntiVirus (ClamAV) Software versions 0.102.1 and 0.102.0 could allow an unauthenticated, remote malicious user to cause a denial of service condition on an affected device. The vulnerability is due to an out-of-boun...
Clamav Clamav 0.102.0
Clamav Clamav 0.102.1
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
NA
CVE-2015-1461
ClamAV prior to 0.98.6 allows remote malicious users to have unspecified impact via a crafted (1) Yoda's crypter or (2) mew packer file, related to a "heap out of bounds condition."
Fedoraproject Fedora 20
Fedoraproject Fedora 21
Clamav Clamav
NA
CVE-2012-1458
The Microsoft CHM file parser in ClamAV 0.96.4 and Sophos Anti-Virus 4.61.0 allows remote malicious users to bypass malware detection via a crafted reset interval in the LZXC header of a CHM file. NOTE: this may later be SPLIT into multiple CVEs if additional information is publi...
Clamav Clamav 0.96.4
Sophos Sophos Anti-virus 4.61.0
5.5
CVSSv3
CVE-2021-27506
The ClamAV Engine (version 0.103.1 and below) component embedded in Storsmshield Network Security (SNS) is subject to DoS in case of parsing of malformed png files. This affect Netasq versions 9.1.0 to 9.1.11 and SNS versions 1.0.0 to 4.2.0. This issue is fixed in SNS 3.7.19, 3.1...
Stormshield Network Security
Netasq Project Netasq
Clamav Clamav
NA
CVE-2015-1462
ClamAV prior to 0.98.6 allows remote malicious users to have unspecified impact via a crafted upx packer file, related to a "heap out of bounds condition."
Fedoraproject Fedora 20
Fedoraproject Fedora 21
Clamav Clamav
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »