High severity8.4NVD Advisory· Published Feb 12, 2026· Updated Apr 15, 2026

CVE-2020-37167

Description

ClamAV versions prior to 0.103.0-rc contain a vulnerability in function name processing through the ClamBC bytecode interpreter that allows attackers to manipulate bytecode function names. Attackers can exploit the weak input validation in function name encoding to potentially execute malicious bytecode or cause unexpected behavior in the ClamAV engine.

Affected products

Cisco Systems, Inc./Clamavreferences

Patches

cd2f2975b932

https://github.com/cisco-talos/clamavvia osv

Vulnerability mechanics

Generated by null/stub on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

News mentions

UAT-8302 and its box full of malware
Cisco Talos Intelligence · May 5, 2026
CloudZ RAT potentially steals OTP messages using Pheno plugin
Cisco Talos Intelligence · May 5, 2026
UAT-4356's Targeting of Cisco Firepower Devices
Cisco Talos Intelligence · Apr 23, 2026
PowMix botnet targets Czech workforce
Cisco Talos Intelligence · Apr 16, 2026

cvss	0.546
epss	0.000
exploit	0.000
kev	0.000
patch	-0.070
ransomware	0.000