Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
clamav clamav vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2021-1405
A vulnerability in the email parsing module in Clam AntiVirus (ClamAV) Software version 0.103.1 and all prior versions could allow an unauthenticated, remote malicious user to cause a denial of service condition on an affected device. The vulnerability is due to improper variable...
Clamav Clamav
Debian Debian Linux 9.0
NA
CVE-2008-3913
Multiple memory leaks in freshclam/manager.c in ClamAV prior to 0.94 might allow malicious users to cause a denial of service (memory consumption) via unspecified vectors related to "error handling logic".
Clamav Clamav
Debian Debian Linux 4.0
NA
CVE-2005-2450
Multiple integer overflows in the (1) TNEF, (2) CHM, or (3) FSG file format processors in libclamav for Clam AntiVirus (ClamAV) 0.86.1 and previous versions allow remote malicious users to gain privileges via a crafted e-mail message.
Clam Anti-virus Clamav 0.85.1
Clam Anti-virus Clamav 0.85
Clam Anti-virus Clamav 0.86
NA
CVE-2005-2056
The Quantum archive decompressor in Clam AntiVirus (ClamAV) prior to 0.86.1 allows remote malicious users to cause a denial of service (application crash) via a crafted Quantum archive.
Clam Anti-virus Clamav 0.85.1
Clam Anti-virus Clamav 0.85
Clam Anti-virus Clamav 0.86
NA
CVE-2012-1419
The TAR file parser in ClamAV 0.96.4 and Quick Heal (aka Cat QuickHeal) 11.00 allows remote malicious users to bypass malware detection via a POSIX TAR file with an initial [aliases] character sequence. NOTE: this may later be SPLIT into multiple CVEs if additional information is...
Clamav Clamav 0.96.4
Cat Quick Heal 11.00
7.5
CVSSv3
CVE-2020-3123
A vulnerability in the Data-Loss-Prevention (DLP) module in Clam AntiVirus (ClamAV) Software versions 0.102.1 and 0.102.0 could allow an unauthenticated, remote malicious user to cause a denial of service condition on an affected device. The vulnerability is due to an out-of-boun...
Clamav Clamav 0.102.0
Clamav Clamav 0.102.1
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
5.5
CVSSv3
CVE-2021-27506
The ClamAV Engine (version 0.103.1 and below) component embedded in Storsmshield Network Security (SNS) is subject to DoS in case of parsing of malformed png files. This affect Netasq versions 9.1.0 to 9.1.11 and SNS versions 1.0.0 to 4.2.0. This issue is fixed in SNS 3.7.19, 3.1...
Stormshield Network Security
Netasq Project Netasq
Clamav Clamav
NA
CVE-2012-1458
The Microsoft CHM file parser in ClamAV 0.96.4 and Sophos Anti-Virus 4.61.0 allows remote malicious users to bypass malware detection via a crafted reset interval in the LZXC header of a CHM file. NOTE: this may later be SPLIT into multiple CVEs if additional information is publi...
Clamav Clamav 0.96.4
Sophos Sophos Anti-virus 4.61.0
NA
CVE-2015-1461
ClamAV prior to 0.98.6 allows remote malicious users to have unspecified impact via a crafted (1) Yoda's crypter or (2) mew packer file, related to a "heap out of bounds condition."
Fedoraproject Fedora 20
Fedoraproject Fedora 21
Clamav Clamav
NA
CVE-2015-1462
ClamAV prior to 0.98.6 allows remote malicious users to have unspecified impact via a crafted upx packer file, related to a "heap out of bounds condition."
Fedoraproject Fedora 20
Fedoraproject Fedora 21
Clamav Clamav
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »