306 matches found
EUVD-2022-25948
Malicious code in bioql PyPI...
EUVD-2024-18043
Malicious code in bioql PyPI...
EUVD-2023-24231
Malicious code in bioql PyPI...
EUVD-2022-26035
Malicious code in bioql PyPI...
CBL Mariner 2.0 Security Update: clamav (CVE-2025-20260)
The version of clamav installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-20260 advisory. - A vulnerability in the PDF scanning processes of ClamAV could allow an unauthenticated, remote attacker to...
CVE-2025-20260 affecting package clamav for versions less than 1.0.9-1
CVE-2025-20260 affecting package clamav for versions less than 1.0.9-1. An upgraded version of the package is available that resolves this issue...
Amazon Linux 2023 : clamav1.4, clamav1.4-data, clamav1.4-devel (ALAS2023-2025-1081)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-1081 advisory. A vulnerability in Universal Disk Format UDF processing of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device.This...
USN-7615-1 clamav vulnerabilities
It was discovered that ClamAV incorrectly handled scanning UDF files. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. CVE-2025-20234 It was discovered that ClamAV incorrectly handled scanning PDF files. A remote attacker could use this...
ClamAV 1.x < 1.0.9, 1.1.x < 1.4.3 Buffer Overflow Vulnerability - Linux
ClamAV is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:clamav:clamav"; ifdescription...
ClamAV 1.x < 1.0.9, 1.1.x < 1.4.3 Buffer Overflow Vulnerability - Windows
ClamAV is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:clamav:clamav"; ifdescription...
ClamAV 1.2 < 1.4.3 DoS Vulnerability - Windows
ClamAV is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:clamav:clamav";...
OESA-2025-1694 clamav security update
Clam AntiVirus is an anti-virus toolkit for UNIX. The main purpose of this software is the integration with mail servers attachment scanning. The package provides a flexible and scalable multi-threaded daemon, a command line scanner, and a tool for automatic updating via Internet. The programs ar...
FreeBSD : clamav -- ClamAV PDF Scanning Buffer Overflow Vulnerability (3dcc0812-4da5-11f0-afcc-f02f7432cf97)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 3dcc0812-4da5-11f0-afcc-f02f7432cf97 advisory. Cisco reports: A vulnerability in the PDF scanning processes of ClamAV could allow an unauthenticated,...
ClamAV
RISK EVALUATION ClamAV is an open source antivirus maintained by Cisco. A heap-based buffer overflow vulnerability in the PDF scanning process of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service or possibly execute arbitrary code. 2. RECOMMENDED PRACTICES...
SUSE CVE-2025-20260
A vulnerability in the PDF scanning processes of ClamAV could allow an unauthenticated, remote attacker to cause a buffer overflow condition, cause a denial of service DoS condition, or execute arbitrary code on an affected device. This vulnerability exists because memory buffers are allocated...
CVE-2025-20260
A vulnerability has been discovered in the PDF parsing engine of ClamAV. This flaw can be exploited to achieve remote code execution RCE. Given that ClamAV is routinely used to process untrusted input for example, email attachments and downloaded files, a malicious PDF document could trigger this...
CVE-2025-20260
A vulnerability in the PDF scanning processes of ClamAV could allow an unauthenticated, remote attacker to cause a buffer overflow condition, cause a denial of service DoS condition, or execute arbitrary code on an affected device. This vulnerability exists because memory buffers are allocated...
AZL-64208 CVE-2025-20260 affecting package clamav for versions less than 1.0.9-1
A vulnerability in the PDF scanning processes of ClamAV could allow an unauthenticated, remote attacker to cause a buffer overflow condition, cause a denial of service DoS condition, or execute arbitrary code on an affected device. This vulnerability exists because memory buffers are allocated...
CVE-2025-20260
A vulnerability in the PDF scanning processes of ClamAV could allow an unauthenticated, remote attacker to cause a buffer overflow condition, cause a denial of service DoS condition, or execute arbitrary code on an affected device. This vulnerability exists because memory buffers are allocated...
CVE-2025-20234
A vulnerability in Universal Disk Format UDF processing of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to a memory overread during UDF file scanning. An attacker could exploit this vulnerability...