CVE-2026-20031

EPSS 0.12%
Veröffentlicht 04.03.2026 17:17:33
Zuletzt bearbeitet 05.03.2026 19:39:11
Quelle psirt@cisco.com
CVE-Watchlists
Login
Unerledigt
Login

A vulnerability in the HTML Cascading Style Sheets (CSS) module of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.

This vulnerability is due to improper error handling when splitting UTF-8 strings. An attacker could exploit this vulnerability by submitting a crafted HTML file to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to terminate the scanning process.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerCisco

≫

Produkt Cisco Secure Endpoint

Default Statusunknown

Version 7.0.5

Status affected

Version 6.2.19

Status affected

Version 7.3.3

Status affected

Version 7.2.13

Status affected

Version 6.1.5

Status affected

Version 6.3.1

Status affected

Version 6.2.5

Status affected

Version 7.3.5

Status affected

Version 6.2.1

Status affected

Version 7.2.7

Status affected

Version 7.1.1

Status affected

Version 6.3.5

Status affected

Version 6.2.9

Status affected

Version 7.3.1

Status affected

Version 6.1.7

Status affected

Version 7.2.11

Status affected

Version 7.2.3

Status affected

Version 7.1.5

Status affected

Version 6.3.3

Status affected

Version 7.3.9

Status affected

Version 6.2.3

Status affected

Version 6.1.9

Status affected

Version 6.0.9

Status affected

Version 7.2.5

Status affected

Version 6.0.7

Status affected

Version 6.3.7

Status affected

Version 1.12.3

Status affected

Version 1.8.0

Status affected

Version 1.11.1

Status affected

Version 1.12.4

Status affected

Version 1.10.0

Status affected

Version 1.12.0

Status affected

Version 1.8.1

Status affected

Version 1.10.1

Status affected

Version 1.12.1

Status affected

Version 1.12.6

Status affected

Version 1.14.0

Status affected

Version 1.10.2

Status affected

Version 1.12.7

Status affected

Version 1.12.2

Status affected

Version 1.6.0

Status affected

Version 1.9.0

Status affected

Version 1.11.0

Status affected

Version 1.7.0

Status affected

Version 1.13.0

Status affected

Version 1.8.4

Status affected

Version 1.13.1

Status affected

Version 1.9.1

Status affected

Version 1.12.5

Status affected

Version 1.13.2

Status affected

Version 2.0.2

Status affected

Version 1.1.0

Status affected

Version 2.0.0

Status affected

Version 2.0.1

Status affected

Version 8.1.7.21512

Status affected

Version 8.1.7

Status affected

Version 8.1.5

Status affected

Version 8.1.3.21242

Status affected

Version 8.1.3

Status affected

Version 8.1.5.21322

Status affected

Version 8.1.7.21417

Status affected

Version 2.1.0.14

Status affected

Version 2.2.0

Status affected

Version 2.3.0

Status affected

Version 2.4.0

Status affected

Version 2.5.0

Status affected

Version 2.6.0

Status affected

Version 2.7.0

Status affected

Version 2.8.0

Status affected

Version 2.9.0

Status affected

Version 2.10.0

Status affected

Version 2.10.1

Status affected

Version 2.11.0

Status affected

Version 1.14.1

Status affected

Version 1.15.1

Status affected

Version 1.15.2

Status affected

Version 1.15.3

Status affected

Version 1.15.4

Status affected

Version 1.15.5

Status affected

Version 1.15.6

Status affected

Version 1.16.0

Status affected

Version 1.16.1

Status affected

Version 1.16.2

Status affected

Version 1.16.3

Status affected

Version 1.18.0

Status affected

Version 1.18.1

Status affected

Version 1.20.0

Status affected

Version 1.21.0

Status affected

Version 1.21.1

Status affected

Version 1.21.2

Status affected

Version 1.21.3

Status affected

Version 1.22.0

Status affected

Version 1.22.1

Status affected

Version 1.22.2

Status affected

Version 1.22.3

Status affected

Version 1.22.4

Status affected

Version 1.24.0

Status affected

Version 1.24.1

Status affected

Version 1.24.2

Status affected

Version 1.24.3

Status affected

Version 1.24.4

Status affected

Version 1.26.0

Status affected

Version 1.24.5

Status affected

Version 1.26.1

Status affected

Version 1.27.0

Status affected

Version 1.15.0

Status affected

Version 1.17.0

Status affected

Version 1.17.1

Status affected

Version 1.17.2

Status affected

Version 1.19.0

Status affected

Version 1.20.1

Status affected

Version 1.20.2

Status affected

Version 1.20.3

Status affected

Version 1.20.4

Status affected

Version 1.20.5

Status affected

Version 1.20.6

Status affected

Version 1.23.0

Status affected

Version 1.23.1

Status affected

Version 1.20.7

Status affected

Version 1.20.8

Status affected

Version 1.25.0

Status affected

Version 1.25.1

Status affected

Version 1.25.2

Status affected

Version 1.27.1

Status affected

Version 1.27.2

Status affected

Version 7.3.13

Status affected

Version 7.3.15

Status affected

Version 7.4.1

Status affected

Version 7.4.1.20425

Status affected

Version 7.4.1.20439

Status affected

Version 7.4.3

Status affected

Version 7.4.3.20679

Status affected

Version 7.4.5

Status affected

Version 7.5.1.20813

Status affected

Version 7.5.1.20833

Status affected

Version 7.5.3

Status affected

Version 7.5.5

Status affected

Version 8.0.1.21160

Status affected

Version 8.0.1.21164

Status affected

Version 7.5.7

Status affected

Version 7.5.9

Status affected

Version 7.5.11

Status affected

Version 8.1.7.21585

Status affected

Version 7.5.13.21586

Status affected

Version 7.5.13.21598

Status affected

Version 8.2.1.21612

Status affected

Version 8.2.1.21650

Status affected

Version 7.5.15.21611

Status affected

Version 7.5.17.21680

Status affected

Version 8.2.3.30119

Status affected

Version 8.2.4.30130

Status affected

Version 8.4.0

Status affected

Version 7.5.19

Status affected

Version 8.4.1.30298

Status affected

Version 8.4.2.30317

Status affected

Version 8.4.1.30307

Status affected

Version 7.5.20

Status affected

Version 8.4.3

Status affected

Version 8.4.4.30419

Status affected

Version 8.4.4.30467

Status affected

Version 7.5.21.21732

Status affected

Version 8.4.5.30483

Status affected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.12%	0.314

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
psirt@cisco.com	5.3	3.9	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CWE-248 Uncaught Exception

An exception is thrown from a function, but it is not caught.

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-css-Fn4QSZ

https://nvd.nist.gov/vuln/detail/CVE-2026-20031

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-20031

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-20031

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-20031