3 matches found
CVE-2020-26893
An issue was discovered in ClamXAV 3 before 3.1.1. A malicious actor could use a properly signed copy of ClamXAV 2 running with an injected malicious dylib to communicate with ClamXAV 3's helper tool and perform privileged operations. This occurs because of inadequate client verification in the...
CVE-2020-26893
CVE-2020-26893 affects ClamXAV 3.x prior to 3.1.1. A vulnerability arises from inadequate authentication of the client in the ClamXAV 3 helper tool, enabling a correctly signed ClamXAV 2 instance running with a malicious injected dylib to communicate with the helper and perform privileged operati...
CVE-2020-26893
An issue was discovered in ClamXAV 3 before 3.1.1. A malicious actor could use a properly signed copy of ClamXAV 2 running with an injected malicious dylib to communicate with ClamXAV 3's helper tool and perform privileged operations. This occurs because of inadequate client verification in the...