CVSS: 5.3EPSS: 0%CPEs: 55EXPL: 0CVE-2025-20128 – ClamAV OLE2 File Format Decryption Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2025-20128
22 Jan 2025 — A vulnerability in the Object Linking and Embedding 2 (OLE2) decryption routine of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to an integer underflow in a bounds check that allows for a heap buffer overflow read. An attacker could exploit this vulnerability by submitting a crafted file containing OLE2 content to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to... • https://blog.clamav.net/2025/01/clamav-142-and-108-security-patch.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-122: Heap-based Buffer Overflow •
CVSS: 7.8EPSS: 2%CPEs: 5EXPL: 0CVE-2024-20290 – Ubuntu Security Notice USN-6636-1
https://notcve.org/view.php?id=CVE-2024-20290
07 Feb 2024 — A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to an incorrect check for end-of-string values during scanning, which may result in a heap buffer over-read. An attacker could exploit this vulnerability by submitting a crafted file containing OLE2 content to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to cause the ... • https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5FXZYVDNV66RNMNVJOHAJAYRZV4U64CQ • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 5.0EPSS: 0%CPEs: 35EXPL: 0CVE-2023-20084
https://notcve.org/view.php?id=CVE-2023-20084
22 Nov 2023 — A vulnerability in the endpoint software of Cisco Secure Endpoint for Windows could allow an authenticated, local attacker to evade endpoint protection within a limited time window. This vulnerability is due to a timing issue that occurs between various software components. An attacker could exploit this vulnerability by persuading a user to put a malicious file into a specific folder and then persuading the user to execute the file within a limited time window. A successful exploit could allow the attacker... • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-secure-endpoint-dos-RzOgFKnd • CWE-437: Incomplete Model of Endpoint Features •
CVSS: 7.8EPSS: 1%CPEs: 2EXPL: 0CVE-2023-20212
https://notcve.org/view.php?id=CVE-2023-20212
18 Aug 2023 — A vulnerability in the AutoIt module of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to a logic error in the memory management of an affected device. An attacker could exploit this vulnerability by submitting a crafted AutoIt file to be scanned by ClamAV on the affected device. A successful exploit could allow the attacker to cause the ClamAV scanning process to restart unexpectedly, resulting in a DoS co... • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-dos-FTkhqMWZ • CWE-825: Expired Pointer Dereference •
CVSS: 7.8EPSS: 1%CPEs: 6EXPL: 0CVE-2023-20197 – Ubuntu Security Notice USN-6303-1
https://notcve.org/view.php?id=CVE-2023-20197
16 Aug 2023 — A vulnerability in the filesystem image parser for Hierarchical File System Plus (HFS+) of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to an incorrect check for completion when a file is decompressed, which may result in a loop condition that could cause the affected software to stop responding. An attacker could exploit this vulnerability by submitting a crafted HFS+ filesystem image to be scanned by Cl... • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-rNwNEEee • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •