Lucene search
K

3870 matches found

Ubuntu
Ubuntu
added 6 days ago5 views

USN-8517-1: ClamAV vulnerabilities

It was discovered that ClamAV incorrectly handled certain PE files. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. CVE-2026-20213, CVE-2026-20214, CVE-2026-20217 It was discovered that ClamAV incorrectly handled certain 7z archive files...

7.5CVSS7.1AI score0.00463EPSS
Exploits0
Fedora
Fedora
added 2026/07/05 1:10 a.m.11 views

[SECURITY] Fedora 44 Update: clamav-1.4.5-1.fc44

Clam AntiVirus is an anti-virus toolkit for UNIX. The main purpose of this software is the integration with mail servers attachment scanning. The package provides a flexible and scalable multi-threaded daemon, a command line scanner, and a tool for automatic updating via Internet. The programs ar...

6AI score
Exploits0
OSV
OSV
added 2026/07/04 12:0 a.m.13 views

OPENSUSE-SU-2026:11182-1 clamav-1.5.3-1.1 on GA media

These are all security issues fixed in the clamav-1.5.3-1.1 package on the GA media of openSUSE Tumbleweed...

9.8CVSS5.9AI score0.00463EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2026/07/03 4:16 p.m.8 views

CVE-2026-20213

A flaw was found in ClamAV. An unauthenticated, remote attacker could exploit this vulnerability by submitting a specially crafted file containing Portable Executable PE content for scanning. This is due to improper boundary checks during the scanning process, which may lead to an out-of-bounds...

7.5CVSS6AI score0.00463EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/07/03 2:40 p.m.7 views

CVE-2026-20243

A flaw was found in ClamAV's ALZ file format parser. An unauthenticated, remote attacker can exploit this vulnerability by submitting a specially crafted ALZ Archived Link Zipped file for scanning. This improper handling of ALZ files can lead to memory corruption, causing the ClamAV scanning...

7.5CVSS5.9AI score0.00389EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/07/03 1:38 p.m.8 views

CVE-2026-20244

A flaw was found in ClamAV's DMG file format parser. An unauthenticated, remote attacker can exploit this vulnerability by submitting a specially crafted DMG file for scanning. Improper boundary checks during the scanning process can lead to an integer overflow, primarily affecting 32-bit...

7.5CVSS7AI score0.00389EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/07/03 1:20 p.m.8 views

CVE-2026-20214

A flaw was found in ClamAV. An unauthenticated, remote attacker could exploit a vulnerability in the FSG file format parser by submitting a specially crafted file for scanning. This improper handling of FSG files can lead to an out-of-bounds buffer write, causing memory corruption. A successful...

7.5CVSS7.2AI score0.00463EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/07/03 12:56 p.m.17 views

CVE-2026-20217

A flaw was found in ClamAV. An unauthenticated, remote attacker can exploit a vulnerability in the PESpin file format parser by submitting a specially crafted file. This flaw, caused by improper boundary checks, leads to an out-of-bounds buffer write and memory corruption. A successful exploit ca...

7.5CVSS7.1AI score0.00389EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/07/03 12:50 p.m.7 views

CVE-2026-20215

A flaw was found in ClamAV's 7z file format parser. An unauthenticated, remote attacker could exploit this vulnerability by submitting a specially crafted 7z file for scanning. This improper handling of 7z files can lead to memory corruption, allowing the attacker to cause a Denial of Service DoS...

7.5CVSS7AI score0.00389EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/07/03 6:17 a.m.8 views

CVE-2026-20216

A flaw was found in ClamAV's InstallShield file format parser. An unauthenticated, remote attacker could exploit this vulnerability by submitting a specially crafted InstallShield file for scanning. This improper handling of temporary resources during file scanning could lead to the termination o...

7.5CVSS6AI score0.00389EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/07/03 3:26 a.m.7 views

SUSE CVE-2026-20213

A vulnerability in the PE file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device. This vulnerability is due to improper boundary checks for content in PE file...

7.5CVSS7.3AI score0.00463EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2026/07/03 3:26 a.m.7 views

SUSE CVE-2026-20214

A vulnerability in the FSG file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device. This vulnerability is due to improper boundary checks for content in FSG...

7.5CVSS7.3AI score0.00463EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2026/07/03 3:26 a.m.10 views

SUSE CVE-2026-20215

A vulnerability in the 7z file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device. This vulnerability is due to improper boundary checks for content in 7z file...

7.5CVSS7.3AI score0.00389EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2026/07/03 3:26 a.m.8 views

SUSE CVE-2026-20216

A vulnerability in the InstallShield file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is due to improper handling of temporary resources during file scanning. An attacker could exploit this vulnerabilit...

7.5CVSS7.1AI score0.00389EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2026/07/03 3:25 a.m.8 views

SUSE CVE-2026-20217

A vulnerability in the PESpin file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device. This vulnerability is due to improper boundary checks for content in...

7.5CVSS7.3AI score0.00389EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2026/07/03 3:25 a.m.7 views

SUSE CVE-2026-20243

A vulnerability in the ALZ file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device. This vulnerability is due to improper boundary checks for content in ALZ...

7.5CVSS7.3AI score0.00389EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2026/07/03 3:25 a.m.9 views

SUSE CVE-2026-20244

A vulnerability in the DMG file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device. This vulnerability is due to improper boundary checks for content in DMG...

7.5CVSS7.2AI score0.00389EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/07/03 12:0 a.m.9 views

Cisco Secure Endpoint Multiple ClamAV DoS (cisco-sa-clamav-88cFYyxR)

According to its self-reported version, Cisco Secure Endpoint is affected by multiple vulnerabilities. - A vulnerability in the PE file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory...

7.5CVSS7.3AI score0.00463EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2026/07/02 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-20244

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability in the DMG file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded...

7.5CVSS7.2AI score0.00389EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/07/02 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-20213

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability in the PE file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded...

7.5CVSS7.3AI score0.00463EPSS
Exploits0References3
Rows per page
Query Builder