6.1 Medium
AI Score
Confidence
High
0.32 Low
EPSS
Percentile
97.0%
Unspecified vulnerability in ClamAV before 0.88.5 allows remote attackers to cause a denial of service (scanning service crash) via a crafted Compressed HTML Help (CHM) file that causes ClamAV to “read an invalid memory location.”