CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Clamxav: >> Clamxav >> 3.0.3 Security Vulnerabilities

CVE-2020-26893

An issue was discovered in ClamXAV 3 before 3.1.1. A malicious actor could use a properly signed copy of ClamXAV 2 (running with an injected malicious dylib) to communicate with ClamXAV 3's helper tool and perform privileged operations. This occurs because of inadequate client verification in the helper tool.

CVSS Score

7.8

EPSS Score

0.0

Published

2020-10-16

Page 1

Vulnerabilities

Vulnerable Software

Clamxav: >> Clamxav >> 3.0.3 Security Vulnerabilities

Products

Pricing

Contact Us