Denial Of Service (DoS)

2021-04-1104:44:53

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.002 Low

EPSS

Percentile

59.8%

JSON

Clam AntiVirus (ClamAV) Software is vulnera ble to denial of service. The vulnerability is due to improper variable initialization that may result in an NULL pointer read. An attacker could exploit this vulnerability by sending a crafted email to an affected device, causing the ClamAV scanning process crash, resulting in a denial of service condition.

CPENameOperatorVersion
clamav:3.13eq0.103.1-r0
clamav:sideq0.103.0+dfsg-3
clamav:3.12eq0.102.3-r0
clamav:3.12eq0.102.4-r1
clamav:3.11eq0.102.3-r0
clamav:3.11eq0.102.4-r0
clamav:3.11eq0.102.1-r0
clamav:bullseyeeq0.103.0+dfsg-3.1
clamav:bullseyeeq0.103.0+dfsg-3
clamav:edgeeq0.102.2-r0

Name	Operator	Version
clamav:3.13	eq	0.103.1-r0
clamav:sid	eq	0.103.0+dfsg-3
clamav:3.12	eq	0.102.3-r0
clamav:3.12	eq	0.102.4-r1
clamav:3.11	eq	0.102.3-r0
clamav:3.11	eq	0.102.4-r0
clamav:3.11	eq	0.102.1-r0
clamav:bullseye	eq	0.103.0+dfsg-3.1
clamav:bullseye	eq	0.103.0+dfsg-3
clamav:edge	eq	0.102.2-r0