Clamav

Clamav

96 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2025-20260

  • EPSS 0.13%
  • Published 18.06.2025 17:08:36
  • Last modified 11.08.2025 18:19:32

A vulnerability in the PDF scanning processes of ClamAV could allow an unauthenticated, remote attacker to cause a buffer overflow condition, cause a denial of service (DoS) condition, or execute arbitrary code on an affected device. This vulnerab...

7.5

CVE-2025-20234

Media report
  • EPSS 0.15%
  • Published 18.06.2025 16:20:01
  • Last modified 11.08.2025 18:24:39

A vulnerability in Universal Disk Format (UDF) processing of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to a memory overread during UDF file ...

7.5

CVE-2025-20128

  • EPSS 4.14%
  • Published 22.01.2025 17:15:12
  • Last modified 06.08.2025 14:11:27

A vulnerability in the Object Linking and Embedding 2 (OLE2) decryption routine of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to an integer u...

6.1

CVE-2024-20506

  • EPSS 0.04%
  • Published 04.09.2024 22:15:04
  • Last modified 25.03.2025 17:15:47

A vulnerability in the ClamD service module of Clam AntiVirus (ClamAV) versions 1.4.0, 1.3.2 and prior versions, all 1.2.x versions, 1.0.6 and prior versions, all 0.105.x versions, all 0.104.x versions, and 0.103.11 and all prior versions could allow...

7.5

CVE-2024-20505

  • EPSS 0.64%
  • Published 04.09.2024 22:15:03
  • Last modified 25.03.2025 16:15:17

A vulnerability in the PDF parsing module of Clam AntiVirus (ClamAV) versions 1.4.0, 1.3.2 and prior versions, all 1.2.x versions, 1.0.6 and prior versions, all 0.105.x versions, all 0.104.x versions, and 0.103.11 and all prior versions could allow a...

7.5

CVE-2024-20380

  • EPSS 0.5%
  • Published 18.04.2024 20:15:17
  • Last modified 23.07.2025 15:08:46

A vulnerability in the HTML parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to an issue in the C to Rust foreign function interface. An att...

5.3

CVE-2024-20328

  • EPSS 0.38%
  • Published 01.03.2024 21:15:07
  • Last modified 23.07.2025 13:51:54

A vulnerability in the VirusEvent feature of ClamAV could allow a local attacker to inject arbitrary commands with the privileges of the application service account.The vulnerability is due to unsafe handling of file names. A local attacker could exp...

5.3

CVE-2023-20052

Warning
  • EPSS 8.86%
  • Published 01.03.2023 08:15:11
  • Last modified 21.11.2024 07:40:26

On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A vulnerability in the DMG file parser of ClamAV versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7 and earlier could allow an unauthenticated, ...

9.8

CVE-2023-20032

Warning
  • EPSS 6.06%
  • Published 01.03.2023 08:15:11
  • Last modified 21.11.2024 07:40:23

On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A vulnerability in the HFS+ partition file parser of ClamAV versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7 and earlier could allow an unauth...

7.5

CVE-2022-20803

  • EPSS 0.17%
  • Published 17.02.2023 18:15:11
  • Last modified 21.11.2024 06:43:35

A vulnerability in the OLE2 file parser of Clam AntiVirus (ClamAV) versions 0.104.0 through 0.104.2 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device.The vulnerability is due to incorrect use...