CVE-2022-20796

On May 4, 2022, the following vulnerability in the ClamAV scanning library versions 0.103.5 and earlier and 0.104.2 and earlier was disclosed: A vulnerability in Clam AntiVirus (ClamAV) versions 0.103.4, 0.103.5, 0.104.1, and 0.104.2 could allow an authenticated, local attacker to cause a denial of service condition on an affected device. For a description of this vulnerability, see the ClamAV blog.
Configurations

Configuration 1

cpe:2.3:a:clamav:clamav:0.103.4:*:*:*:*:*:*:*
cpe:2.3:a:clamav:clamav:0.103.5:*:*:*:*:*:*:*
cpe:2.3:a:clamav:clamav:0.104.1:*:*:*:*:*:*:*
cpe:2.3:a:clamav:clamav:0.104.2:*:*:*:*:*:*:*
cpe:2.3:a:cisco:secure_endpoint:*:*:*:*:*:windows:*:*
cpe:2.3:a:cisco:secure_endpoint:*:*:*:*:*:macos:*:*
cpe:2.3:a:cisco:secure_endpoint:*:*:*:*:*:macos:*:*
cpe:2.3:a:cisco:secure_endpoint:*:*:*:*:*:linux:*:*
cpe:2.3:a:cisco:secure_endpoint:*:*:*:*:*:linux:*:*
cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

Information

Published : 2022-05-04 05:15

Updated : 2022-07-01 06:56


NVD link : CVE-2022-20796

Mitre link : CVE-2022-20796

Products Affected
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer