Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistSnykCVELIST:CVE-2020-7613
HistoryApr 07, 2020 - 1:19 p.m.

CVE-2020-7613

2020-04-0713:19:05
snyk
www.cve.org
2

EPSS

0.017

Percentile

87.7%

JSON

clamscan through 1.2.0 is vulnerable to Command Injection. It is possible to inject arbitrary commands as part of the _is_clamav_binary function located within Index.js. It should be noted that this vulnerability requires a pre-requisite that a folder should be created with the same command that will be chained to execute. This lowers the risk of this issue.

CNA Affected

[
  {
    "product": "clamscan",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "All versions including 1.2.0"
      }
    ]
  }
]

Related

osv 2
github 1
nvd 1
huntr 1
veracode 1
prion 1
cve 1
osv
osv
CVE-2020-7613
2020-04-07 14:15:14
Clamscan vulnerable to command injection
2022-05-24 17:13:40
github
github
Clamscan vulnerable to command injection
2022-05-24 17:13:40
nvd
nvd
CVE-2020-7613
2020-04-07 14:15:14
huntr
huntr
Command Injection in kylefarris/clamscan
2020-09-02 00:00:00
veracode
veracode
OS Command Injection
2020-04-08 03:13:06
prion
prion
Command injection
2020-04-07 14:15:00
cve
cve
CVE-2020-7613
2020-04-07 14:15:14

EPSS

0.017

Percentile

87.7%

JSON
Related for CVELIST:CVE-2020-7613
osv2github1nvd1huntr1veracode1prion1cve1