CVE-2025-20260
- EPSS 0.13%
- Published 18.06.2025 17:08:36
- Last modified 11.08.2025 18:19:32
A vulnerability in the PDF scanning processes of ClamAV could allow an unauthenticated, remote attacker to cause a buffer overflow condition, cause a denial of service (DoS) condition, or execute arbitrary code on an affected device. This vulnerab...
CVE-2024-20380
- EPSS 0.5%
- Published 18.04.2024 20:15:17
- Last modified 23.07.2025 15:08:46
A vulnerability in the HTML parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to an issue in the C to Rust foreign function interface. An att...
CVE-2024-20328
- EPSS 0.38%
- Published 01.03.2024 21:15:07
- Last modified 23.07.2025 13:51:54
A vulnerability in the VirusEvent feature of ClamAV could allow a local attacker to inject arbitrary commands with the privileges of the application service account.The vulnerability is due to unsafe handling of file names. A local attacker could exp...
CVE-2021-1386
- EPSS 0.13%
- Published 08.04.2021 04:15:12
- Last modified 21.11.2024 05:44:14
A vulnerability in the dynamic link library (DLL) loading mechanism in Cisco Advanced Malware Protection (AMP) for Endpoints Windows Connector, ClamAV for Windows, and Immunet could allow an authenticated, local attacker to perform a DLL hijacking at...