CVE-2023-20212

2023-08-1820:15:09

CWE-825

[email protected]

web.nvd.nist.gov

cve-2023-20212

clamav

autoit

vulnerability

remote attacker

denial of service

dos

nvd

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.2 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

26.8%

JSON

A vulnerability in the AutoIt module of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.

This vulnerability is due to a logic error in the memory management of an affected device. An attacker could exploit this vulnerability by submitting a crafted AutoIt file to be scanned by ClamAV on the affected device. A successful exploit could allow the attacker to cause the ClamAV scanning process to restart unexpectedly, resulting in a DoS condition.

Affected configurations

NVD

Node

ciscosecure_endpointRange<8.1.7.21585linux

ciscosecure_endpoint_private_cloudRange<3.8.0

CPENameOperatorVersion
cisco:secure_endpointcisco secure endpointlt8.1.7.21585
cisco:secure_endpoint_private_cloudcisco secure endpoint private cloudlt3.8.0

CPE	Name	Operator	Version
cisco:secure_endpoint	cisco secure endpoint	lt	8.1.7.21585
cisco:secure_endpoint_private_cloud	cisco secure endpoint private cloud	lt	3.8.0

CNA Affected

[
  {
    "vendor": "Cisco",
    "product": "Cisco Secure Endpoint",
    "versions": [
      {
        "version": "N/A",
        "status": "affected"
      }
    ]
  }
]