Lucene search
K

16 matches found

Redos
Redos
added 2021/09/08 12:0 a.m.25 views

ROS-2-1184

2.1184 Multiple vulnerabilities in ClamAV antivirus package CVE-2021-1252, CVE-2021-1404, CVE-2021-1405 1. Vulnerability Description: CVE-2021-1252 - looping when processing specially formatted Excel XLM files. CVE-2021-1404 - process crash when processing specially formatted PDF documents...

7.5CVSS7.2AI score0.18114EPSS
Exploits15
BDU FSTEC
BDU FSTEC
added 2021/04/27 12:0 a.m.4 views

The vulnerability of the Macro Analysis module in the ClamAV antivirus software package allows a hacker to trigger a service failure.

The vulnerability of the Excel XLM module in the ClamAV antivirus software package exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

7.8CVSS7.4AI score0.02619EPSS
Exploits0References8Affected Software14
Tenable Nessus
Tenable Nessus
added 2021/04/20 12:0 a.m.35 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : ClamAV vulnerabilities (USN-4918-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4918-1 advisory. It was discovered that ClamAV incorrectly handled parsing Excel documents. A remote attacker could possibly use this issue to cau...

7.8CVSS7.5AI score0.03155EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2021:1174-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.03155EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2021/04/16 12:0 a.m.17 views

openSUSE: Security Advisory for clamav (openSUSE-SU-2021:0555-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS7.8AI score0.03155EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2021/04/15 7:0 a.m.4 views

Clam AntiVirus (ClamAV) Excel XLM Parser Denial of Service Vulnerability

...

7.8CVSS7AI score0.02619EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/04/15 12:0 a.m.28 views

SUSE SLED15 / SLES15 Security Update : clamav (SUSE-SU-2021:1190-1)

This update for clamav fixes the following issues : CVE-2021-1252: Fix for Excel XLM parser infinite loop. bsc1184532 CVE-2021-1404: Fix for PDF parser buffer over-read; possible crash. bsc1184533 CVE-2021-1405: Fix for mail parser NULL-dereference crash. bsc1184534 Fix errors when scanning files...

7.8CVSS7.7AI score0.03155EPSS
Exploits0References11
OPENSUSE Linux
OPENSUSE Linux
added 2021/04/15 12:0 a.m.28 views

Security update for clamav (important)

openSUSE Security Update: Security update for clamav Announcement ID: openSUSE-SU-2021:0555-1 Rating: important References: 1181256 1184532 1184533 1184534 Cross-References: CVE-2021-1252 CVE-2021-1404 CVE-2021-1405 CVSS scores: CVE-2021-1252 NVD : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H...

7.5CVSS8.4AI score0.03155EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/04/15 12:0 a.m.42 views

SUSE SLES12 Security Update : clamav (SUSE-SU-2021:1189-1)

This update for clamav fixes the following issues : CVE-2021-1252: Fix for Excel XLM parser infinite loop. bsc1184532 CVE-2021-1404: Fix for PDF parser buffer over-read; possible crash. bsc1184533 CVE-2021-1405: Fix for mail parser NULL-dereference crash. bsc1184534 Fix errors when scanning files...

7.8CVSS7.7AI score0.03155EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2021/04/14 12:0 a.m.34 views

SUSE SLES12 Security Update : clamav (SUSE-SU-2021:1174-1)

This update for clamav fixes the following issues : CVE-2021-1252: Fix for Excel XLM parser infinite loop. bsc1184532 CVE-2021-1404: Fix for PDF parser buffer over-read; possible crash. bsc1184533 CVE-2021-1405: Fix for mail parser NULL-dereference crash. bsc1184534 Fix errors when scanning files...

7.8CVSS7.7AI score0.03155EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2021/04/08 5:15 a.m.27 views

CVE-2021-1252

A vulnerability in the Excel XLM macro parsing module in Clam AntiVirus ClamAV Software versions 0.103.0 and 0.103.1 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improper error handling that may result in...

7.8CVSS7.2AI score0.02619EPSS
Exploits0References5
Prion
Prion
added 2021/04/08 5:15 a.m.17 views

Race condition

A vulnerability in the Excel XLM macro parsing module in Clam AntiVirus ClamAV Software versions 0.103.0 and 0.103.1 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improper error handling that may result in...

7.8CVSS7.3AI score0.02619EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2021/04/08 4:25 a.m.10 views

CVE-2021-1252 Clam AntiVirus (ClamAV) Excel XLM Parser Denial of Service Vulnerability

A vulnerability in the Excel XLM macro parsing module in Clam AntiVirus ClamAV Software versions 0.103.0 and 0.103.1 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improper error handling that may result in...

7.5CVSS6.8AI score0.02619EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/04/08 4:25 a.m.25 views

CVE-2021-1252 Clam AntiVirus (ClamAV) Excel XLM Parser Denial of Service Vulnerability

A vulnerability in the Excel XLM macro parsing module in Clam AntiVirus ClamAV Software versions 0.103.0 and 0.103.1 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improper error handling that may result in...

7.5CVSS7.6AI score0.02619EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2021/04/08 4:25 a.m.26 views

CVE-2021-1252

A vulnerability in the Excel XLM macro parsing module in Clam AntiVirus ClamAV Software versions 0.103.0 and 0.103.1 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improper error handling that may result in...

7.8CVSS7.4AI score0.02619EPSS
Exploits0
FreeBSD
FreeBSD
added 2021/04/07 12:0 a.m.34 views

clamav -- Multiple vulnerabilites

Micah Snyder reports: CVE-2021-1252 Excel XLM parser infinite loop CVE-2021-1404 PDF parser buffer over-read; possible crash. CVE-2021-1405 Mail parser NULL-dereference crash...

7.8CVSS2.4AI score0.03155EPSS
Exploits0References1
Rows per page
Query Builder