Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2025/05/27 12:0 a.m.7 views

ABB M2M Gateway Arbitrary Code Execution in embedded ClamAV (CVE-2023-20032)

On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A vulnerability in the HFS+ partition file parser of ClamAV versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7 and earlier could allow an unauthenticated, remote attacker to execute arbitrary code...

9.8CVSS7.6AI score0.29314EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/10/27 12:0 a.m.72 views

QNAP QTS / QuTS hero Multiple Vulnerabilities in ClamAV (QSA-23-26)

The version of QNAP QTS / QuTS hero installed on the remote host is affected by multiple vulnerabilities as referenced in the QSA-23-26 advisory. - A vulnerability in the HFS+ partition file parser of ClamAV versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7and earlier could allow an...

9.8CVSS8.3AI score0.29314EPSS
Exploits5References3
Tenable Nessus
Tenable Nessus
added 2023/06/20 12:0 a.m.20 views

ClamAV < 0.103.8 / 0.104.x < 0.105.2 / 1.0.x < 1.0.1 RCE

The version of ClamAV installed on the remote host is prior to 0.103.8, 0.104.x prior to 0.105.2 or 1.0.x prior to 1.0.1. It is, therefore, affected by a remote code execution vulnerability in the HFS+ partition file parser of the ClamAV scanning library. An unauthenticated, remote attacker could...

9.8CVSS9.5AI score0.29314EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/04/06 12:0 a.m.71 views

Zimbra Collaboration Server 8.8.x < 8.8.15 Patch 38 / 9.0.0 < 9.0.0 Patch 31 Multiple Vulnerabilities in ClamAV

According to its self-reported version number, Zimbra Collaboration Server is affected by multiple vulnerabilities in the bundled ClamAV package, including: - A vulnerability in the HFS+ partition file parser of ClamAV versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7 and earlier could...

9.8CVSS9.1AI score0.29314EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2023/03/20 12:0 a.m.35 views

CBL Mariner 2.0 Security Update: clamav (CVE-2023-20032)

The version of clamav installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-20032 advisory. - On February 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A...

9.8CVSS9AI score0.29314EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/03/08 12:0 a.m.47 views

ClamAV < 0.103.8 / 0.104.x < 0.105.2 / 1.0.0 Multiple Vulnerabilities

According to its version, the ClamAV clamd antivirus daemon running on the remote host is prior to 0.103.8, 0.104.x prior to 0.105.2, or 1.0.0. It is, therefore, affected by multiple vulnerabilities: - A vulnerability in the HFS+ partition file parser of ClamAV versions 1.0.0 and earlier, 0.105.1...

9.8CVSS8.2AI score0.29314EPSS
Exploits5References3
Prion
Prion
added 2023/03/01 8:15 a.m.24 views

Heap overflow

On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A vulnerability in the HFS+ partition file parser of ClamAV versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7 and earlier could allow an unauthenticated, remote attacker to execute arbitrary code...

7.5CVSS9.6AI score0.29314EPSS
Exploits0References1Affected Software5
Veracode
Veracode
added 2023/02/18 8:7 a.m.26 views

Denial Of Service (DoS)

clamav is vulnerable to denial of service DoS. A missing buffer size check results in a heap buffer overflow write, an attacker could submit a crafted HFS+ partition file allowing them to execute arbitrary code resulting in a system crash...

9.8CVSS9.4AI score0.29314EPSS
Exploits0References7Affected Software1
Debian CVE
Debian CVE
added 2023/02/16 3:24 p.m.104 views

CVE-2023-20032

On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A vulnerability in the HFS+ partition file parser of ClamAV versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7 and earlier could allow an unauthenticated, remote attacker to execute arbitrary code...

9.8CVSS9AI score0.29314EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/02/16 12:0 a.m.35 views

FreeBSD : clamav -- Multiple vulnerabilities (fd792048-ad91-11ed-a879-080027f5fec9)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the fd792048-ad91-11ed-a879-080027f5fec9 advisory. - On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A...

9.8CVSS8.3AI score0.29314EPSS
Exploits5References4
Cisco
Cisco
added 2023/02/15 4:0 p.m.128 views

ClamAV HFS+ Partition Scanning Buffer Overflow Vulnerability Affecting Cisco Products: February 2023

On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A vulnerability in the HFS+ partition file parser of ClamAV versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7 and earlier could allow an unauthenticated, remote attacker to execute arbitrary code...

9.8CVSS9.7AI score0.29314EPSS
Exploits0References1
Rows per page
Query Builder