Clamav Security Vulnerabilities and Issues — Clamav CVE List

Lucene search

CiscoClamav

7 matches found

CVE•added 2019/11/05 7:15 p.m.•338 views

CVE-2019-12625

ClamAV versions prior to 0.101.3 are susceptible to a zip bomb vulnerability where an unauthenticated attacker can cause a denial of service condition by sending crafted messages to an affected system.

7.5CVSS8.2AI score0.02412EPSS

CVE•added 2019/04/08 7:29 p.m.•218 views

CVE-2019-1787

A vulnerability in the Portable Document Format (PDF) scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and prior could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to a lack of prope...

7.5CVSS6.4AI score0.0257EPSS

CVE•added 2019/04/08 8:29 p.m.•202 views

CVE-2019-1788

A vulnerability in the Object Linking & Embedding (OLE2) file scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and prior could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a lack of pro...

7.5CVSS6.4AI score0.13763EPSS

CVE•added 2019/11/05 7:15 p.m.•197 views

CVE-2019-1789

ClamAV versions prior to 0.101.2 are susceptible to a denial of service (DoS) vulnerability. An out-of-bounds heap read condition may occur when scanning PE files. An example is Windows EXE and DLL files that have been packed using Aspack as a result of inadequate bound-checking.

7.5CVSS7.5AI score0.02168EPSS

CVE•added 2019/04/08 7:29 p.m.•143 views

CVE-2019-1785

A vulnerability in the RAR file scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and 0.101.0 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a lack of proper error-handling mechanism...

9.8CVSS7.5AI score0.01999EPSS

CVE•added 2019/04/08 7:29 p.m.•142 views

CVE-2019-1786

A vulnerability in the Portable Document Format (PDF) scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and 0.101.0 could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to a lack of pro...

7.5CVSS6.4AI score0.06945EPSS

CVE•added 2019/04/08 8:29 p.m.•133 views

CVE-2019-1798

A vulnerability in the Portable Executable (PE) file scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and prior could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a lack of proper input...

7.5CVSS6.3AI score0.04505EPSS