Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
ClamAV Truncated File Denial of Service Vulnerability Affecting Cisco Products: April 2022
Vulnerability Description
On May 4, 2022, the following vulnerability in the ClamAV scanning library versions 0.103.5 and earlier and 0.104.2 and earlier was disclosed: A vulnerability in Clam AntiVirus (ClamAV) versions 0.103.4, 0.103.5, 0.104.1, and 0.104.2 could allow an authenticated, local attacker to cause a denial of service condition on an affected device. For a description of this vulnerability, see the ClamAV blog.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
Vulnerability Type
非可信指针解引用
Vulnerability Title
ClamAV 代码问题漏洞
Vulnerability Description
ClamAV(Clam AntiVirus)是ClamAV团队的一套免费且开源的杀毒软件。该软件用于检测木马、病毒、恶意软件和其他恶意威胁。 ClamAV 0.104.1版本到0.104.2版本 0.103.4版本到0.103.5版本存在代码问题漏洞,该漏洞源于扫描判定缓存检查中的 NULL 指针取消引用错误。远程攻击者可以将特制数据传递给应用程序利用该漏洞执行拒绝服务 (DoS) 攻击。
CVSS Information
N/A
Vulnerability Type
N/A