Lucene search
+L

11 matches found

CBLMariner
CBLMariner
added 2024/03/07 12:42 a.m.57 views

CVE-2024-20328 affecting package clamav for versions less than 0.105.2-5

CVE-2024-20328 affecting package clamav for versions less than 0.105.2-5. A patched version of the package is available...

5.3CVSS6.3AI score0.84841EPSS
Exploits0
Wolfi
Wolfi
added 2024/03/01 9:15 p.m.29 views

CVE-2024-20328 vulnerabilities

Vulnerabilities for packages: clamav...

5.3CVSS7.5AI score0.84841EPSS
Exploits0
OSV
OSV
added 2024/03/01 9:15 p.m.8 views

AZL-35428 CVE-2024-20328 affecting package clamav for versions less than 0.105.2-5

A vulnerability in the VirusEvent feature of ClamAV could allow a local attacker to inject arbitrary commands with the privileges of the application service account.The vulnerability is due to unsafe handling of file names. A local attacker could exploit this vulnerability by supplying a file nam...

5.3CVSS7.6AI score0.84841EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2024/03/01 8:48 p.m.54 views

CVE-2024-20328

A vulnerability in the VirusEvent feature of ClamAV could allow a local attacker to inject arbitrary commands with the privileges of the application service account.The vulnerability is due to unsafe handling of file names. A local attacker could exploit this vulnerability by supplying a file nam...

5.3CVSS6.1AI score0.84841EPSS
Exploits0
CVE
CVE
added 2024/03/01 8:48 p.m.794 views

CVE-2024-20328

CVE-2024-20328 affects the ClamAV VirusEvent feature, where unsafe handling of file names can allow a local attacker to inject and execute arbitrary commands with the privileges of the application service account (local vector, low complexity). The root cause is command-line sequence processing s...

5.3CVSS6AI score0.84841EPSS
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2024/02/26 12:0 a.m.20 views

Mageia: Security Advisory (MGASA-2024-0048)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.4AI score0.84841EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2024/02/15 12:0 a.m.21 views

Ubuntu: Security Advisory (USN-6636-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.3AI score0.84841EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/02/15 12:0 a.m.35 views

Ubuntu 23.10 : ClamAV vulnerabilities (USN-6636-1)

The remote Ubuntu 23.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6636-1 advisory. It was discovered that ClamAV incorrectly handled parsing certain OLE2 files. A remote attacker could possibly use this issue to cause ClamAV to crash,...

7.5CVSS7AI score0.84841EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2024/02/14 4:11 p.m.35 views

USN-6636-1: ClamAV vulnerabilities

It was discovered that ClamAV incorrectly handled parsing certain OLE2 files. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. CVE-2024-20290 Amit Schendel discovered that the ClamAV ClamD service incorrectly handled the VirusEvent featur...

7.5CVSS7.1AI score0.84841EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/02/13 12:0 a.m.33 views

Fedora 38 : clamav (2024-c42cf0e576)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-c42cf0e576 advisory. Update to 1.0.5 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested fo...

7.5CVSS6.6AI score0.84841EPSS
Exploits0References3
Circl
Circl
added 2024/02/09 5:21 p.m.4 views

CVE-2024-20328

creationtimestamp| type| source ---|---|--- 2024-02-09 17:21:56+00:00| seen| https://t.me/itsecnews/4100 2024-02-12 00:32:41+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/9952 2024-03-01 22:31:38+00:00| seen| https://t.me/ctinow/198034 2024-03-01 22:31:47+00:00| seen|...

5.3CVSS6.7AI score0.84841EPSS
Exploits0References10
Rows per page
Query Builder