VYPR

Clamxav

by ClamAV

CVEs (3)

  • CVE-2024-24245Apr 9, 2024
    risk 0.00cvss epss 0.00

    An issue in Canimaan Software LTD ClamXAV v3.1.2 through v3.6.1 and fixed in v.3.6.2 allows a local attacker to escalate privileges via the ClamXAV helper tool component.

  • CVE-2020-26893Oct 16, 2020
    risk 0.00cvss epss 0.00

    An issue was discovered in ClamXAV 3 before 3.1.1. A malicious actor could use a properly signed copy of ClamXAV 2 (running with an injected malicious dylib) to communicate with ClamXAV 3's helper tool and perform privileged operations. This occurs because of inadequate client…

  • CVE-2006-2427May 17, 2006
    risk 0.00cvss epss 0.00

    freshclam in (1) Clam Antivirus (ClamAV) 0.88 and (2) ClamXav 1.0.3h and earlier does not drop privileges before processing the config-file command line option, which allows local users to read portions of arbitrary files when an error message displays the first line of the…