CVE-2024-20290

2024-02-0717:15:10

CWE-125

CWE-126

[email protected]

web.nvd.nist.gov

clamav

ole2

denial of service

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

35.9%

JSON

A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.

This vulnerability is due to an incorrect check for end-of-string values during scanning, which may result in a heap buffer over-read. An attacker could exploit this vulnerability by submitting a crafted file containing OLE2 content to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to cause the ClamAV scanning process to terminate, resulting in a DoS condition on the affected software and consuming available system resources.

For a description of this vulnerability, see the ClamAV blog .

Affected configurations

Nvd

Node

ciscosecure_endpointRange<7.5.17windows

ciscosecure_endpointRange8.0.1.21160–8.2.3.30119windows

ciscosecure_endpoint_private_cloudRange<3.8.0

Node

fedoraprojectfedoraMatch38

fedoraprojectfedoraMatch39

VendorProductVersionCPE
ciscosecure_endpoint*cpe:2.3:a:cisco:secure_endpoint:*:*:*:*:*:windows:*:*
ciscosecure_endpoint_private_cloud*cpe:2.3:a:cisco:secure_endpoint_private_cloud:*:*:*:*:*:*:*:*
fedoraprojectfedora38cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*
fedoraprojectfedora39cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	secure_endpoint	*	cpe:2.3:a:cisco:secure_endpoint::::::windows::*
cisco	secure_endpoint_private_cloud	*	cpe:2.3:a:cisco:secure_endpoint_private_cloud::::::::
fedoraproject	fedora	38	cpe:2.3:o:fedoraproject:fedora:38:::::::*
fedoraproject	fedora	39	cpe:2.3:o:fedoraproject:fedora:39:::::::*