Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:29954
HistoryApr 11, 2021 - 5:06 a.m.

DLL Hijacking

2021-04-1105:06:04
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8

0.0004 Low

EPSS

Percentile

5.1%

JSON

clamav is vulnerable to DLL hijacking. The vulnerability is due to insufficient validation of directory search paths at run time. An attacker could exploit this vulnerability by placing a malicious DLL file on an affected system. A successful exploit could allow the attacker to execute arbitrary code with SYSTEM privileges.

CPENameOperatorVersion
clamav:3.13eq0.103.1-r0

Related

cvelist 1
cisco 1
prion 1
cve 1
nessus 1
nvd 1
cbl_mariner 1
rosalinux 1
cvelist
cvelist
CVE-2021-1386 Cisco Advanced Malware Protection for Endpoints Windows Connector, ClamAV for Windows, and Immunet DLL Hijacking Vulnerability
2021-04-07 00:00:00
cisco
cisco
Cisco Advanced Malware Protection for Endpoints Windows Connector, ClamAV for Windows, and Immunet DLL Hijacking Vulnerability
2021-04-07 16:00:00
prion
prion
Input validation
2021-04-08 04:15:00
cve
cve
CVE-2021-1386
2021-04-08 04:15:12
nessus
nessus
Cisco ClamAV for Windows DLL Hijacking (cisco-sa-amp-imm-dll-tu79hvkO)
2021-04-15 00:00:00
nvd
nvd
CVE-2021-1386
2021-04-08 04:15:12
cbl_mariner
cbl_mariner
CVE-2021-1386 affecting package clamav 0.103.0-1
2021-05-06 23:56:51
rosalinux
rosalinux
Advisory ROSA-SA-2021-1813
2021-07-02 16:34:56

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for VERACODE:29954
cvelist1cisco1prion1cve1nessus1nvd1cbl_mariner1rosalinux1