Lucene search
K

213 matches found

Ubuntu
Ubuntu
added 6 days ago5 views

USN-8517-1: ClamAV vulnerabilities

It was discovered that ClamAV incorrectly handled certain PE files. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. CVE-2026-20213, CVE-2026-20214, CVE-2026-20217 It was discovered that ClamAV incorrectly handled certain 7z archive files...

7.5CVSS7.1AI score0.00463EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/07/03 6:17 a.m.8 views

CVE-2026-20216

A flaw was found in ClamAV's InstallShield file format parser. An unauthenticated, remote attacker could exploit this vulnerability by submitting a specially crafted InstallShield file for scanning. This improper handling of temporary resources during file scanning could lead to the termination o...

7.5CVSS6AI score0.00389EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/07/02 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2026-20216

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability in the InstallShield file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition on an affected device...

7.5CVSS7.1AI score0.00389EPSS
Exploits0References3
OSV
OSV
added 2026/07/02 12:0 a.m.5 views

UBUNTU-CVE-2026-20216

A vulnerability in the InstallShield file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is due to improper handling of temporary resources during file scanning. An attacker could exploit this vulnerabilit...

7.5CVSS6.9AI score0.00389EPSS
Exploits0References4
OSV
OSV
added 2026/07/01 5:16 p.m.5 views

DEBIAN-CVE-2026-20216

A vulnerability in the InstallShield file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is due to improper handling of temporary resources during file scanning. An attacker could exploit this vulnerabilit...

7.5CVSS5.8AI score0.00389EPSS
Exploits0References1
NVD
NVD
added 2026/07/01 5:16 p.m.7 views

CVE-2026-20216

A vulnerability in the InstallShield file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is due to improper handling of temporary resources during file scanning. An attacker could exploit this vulnerabilit...

7.5CVSS0.00389EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/07/01 4:27 p.m.5 views

CVE-2026-20216

A vulnerability in the InstallShield file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is due to improper handling of temporary resources during file scanning. An attacker could exploit this vulnerabilit...

7.5CVSS5.8AI score0.00389EPSS
Exploits0
EUVD
EUVD
added 2026/07/01 4:27 p.m.9 views

EUVD-2026-41081

A vulnerability in the InstallShield file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is due to improper handling of temporary resources during file scanning. An attacker could exploit this vulnerabilit...

7.5CVSS5.8AI score0.00389EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/07/01 4:27 p.m.28 views

CVE-2026-20216

A vulnerability in the InstallShield file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is due to improper handling of temporary resources during file scanning. An attacker could exploit this vulnerabilit...

7.5CVSS5.8AI score0.00389EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/07/01 4:27 p.m.39 views

CVE-2026-20216 ClamAV InstallShield File Format Processing Resource Exhaustion Vulnerability

A vulnerability in the InstallShield file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is due to improper handling of temporary resources during file scanning. An attacker could exploit this vulnerabilit...

7.5CVSS0.00389EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/07/01 4:27 p.m.5 views

CVE-2026-20216

A vulnerability in the InstallShield file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is due to improper handling of temporary resources during file scanning. An attacker could exploit this vulnerabilit...

7.5CVSS7.1AI score0.00389EPSS
Exploits0
CVE
CVE
added 2026/07/01 4:27 p.m.45 views

CVE-2026-20216

CVE-2026-20216 concerns ClamAV’s InstallShield file format parser. The vulnerability arises from improper handling of temporary resources during scanning, enabling an unauthenticated, remote attacker to submit a crafted InstallShield file that can terminate the ClamAV scanning process and tempora...

7.5CVSS5.8AI score0.00389EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/07/01 12:0 a.m.13 views

PT-2026-54706

Name of the Vulnerable Software and Affected Versions ClamAV affected versions not specified Description An issue exists in the InstallShield file format parser where improper handling of temporary resources during file scanning can lead to a Denial of Service DoS condition. A remote,...

7.8CVSS7.1AI score0.00463EPSS
Exploits0References40
Amd
Amd
added 2026/05/12 12:0 a.m.11 views

InstallShield Privilege Escalation

CVE Details Refer to Glossary for explanation of terms CVE| CVE Description ---|--- CVE-2024-14012 Issued by Revenera| https://vulners.com/cve/CVE-2024-14012...

7.3CVSS5.8AI score0.00123EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/09 12:0 a.m.2 views

Flexera InstallShield < 2024 R1 Privilege Escalation (CVE-2024-7562)

The version of Flexera InstallShield installed on the remote host is prior to 2024 R1. It is, therefore, affected by a privilege escalation vulnerability: - A privilege escalation vulnerability exists in standalone MSI setups built with InstallShield that have multiple InstallScript custom action...

7.3CVSS5.9AI score0.00129EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 9:0 a.m.5 views

CVE-2023-29080

Potential privilege escalation vulnerability in Revenera InstallShield versions 2022 R2 and 2021 R2 due to adding InstallScript custom action to a Basic MSI or InstallScript MSI project extracting few binaries to a predefined writable folder during installation time. The standard user account has...

8.5CVSS7.5AI score0.00168EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/10 5:11 p.m.5 views

CVE-2025-12418

Potential Denial of Service issue in all supported versions of Revenera InstallShield version 2025 R1, 2024 R2, 2023 R2, and prior. When e.g., a local administrator performs an uninstall, a symlink may get followed on removal of a user writeable configuration directory and induce a Denial of...

5.6CVSS6.6AI score0.00149EPSS
Exploits0References1
NVD
NVD
added 2025/11/07 10:15 p.m.4 views

CVE-2025-12418

Potential Denial of Service issue in all supported versions of Revenera InstallShield version 2025 R1, 2024 R2, 2023 R2, and prior. When e.g., a local administrator performs an uninstall, a symlink may get followed on removal of a user writeable configuration directory and induce a Denial of...

5.6CVSS0.00149EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/07 9:27 p.m.3 views

CVE-2025-12418 Potential Denial of Service in Supported Versions of Revenera InstallShield

Potential Denial of Service issue in all supported versions of Revenera InstallShield version 2025 R1, 2024 R2, 2023 R2, and prior. When e.g., a local administrator performs an uninstall, a symlink may get followed on removal of a user writeable configuration directory and induce a Denial of...

5.6CVSS6.2AI score0.00149EPSS
Exploits0References1
CVE
CVE
added 2025/11/07 9:27 p.m.13 views

CVE-2025-12418

CVE-2025-12418 affects Revenera InstallShield (versions 2025 R1, 2024 R2, 2023 R2 and earlier). The issue arises when a local administrator uninstalls and a symlink is followed during removal of a user-writable configuration directory, potentially causing Denial of Service. The root cause is rela...

5.6CVSS6.3AI score0.00149EPSS
Exploits0References1
Rows per page
Query Builder