Clamav
This hub aggregates every CVE we track for Clamav, a product in the security products space. Use it to gauge the current risk picture and drill into individual advisories.
159
CVEs tracked
21
Critical
52
High
0
In CISA KEV
Severity distribution
MEDIUM79HIGH52CRITICAL21LOW7
Monthly trend
0
0
2
0
0
0
1
0
0
0
0
2
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Clamav.
- CVE-2025-20260ClamAV PDF Scanning Buffer Overflow Vulnerability9.8
- CVE-2025-20234ClamAV UDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability5.3
- CVE-2025-20128ClamAV OLE2 File Format Decryption Denial of Service Vulnerability5.3
- CVE-2024-20506ClamAV Privilege Handling Escalation Vulnerability6.1
- CVE-2024-20505ClamAV Memory Handling DoS4.0
- CVE-2024-20380ClamAV HTML Parser Denial of Service Vulnerability7.5
- CVE-2024-20328ClamAV VirusEvent File Processing Command Injection Vulnerability5.3
- CVE-2022-20803ClamAV Double-free Vulnerability in the OLE2 File Parser8.6
- CVE-2023-20052On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A vulnerability in the DMG file parser of ClamAV versions 1.0.0 and earlier, 0.105.1 and earlier, and...5.3
- CVE-2023-20032On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A vulnerability in the HFS+ partition file parser of ClamAV versions 1.0.0 and earlier, 0.105.1 and e...9.8
- CVE-2022-20792A vulnerability in the regex module used by the signature database load module of Clam AntiVirus (ClamAV) versions 0.104.0 through 0.104.2 and LTS version 0.103.5 and prior versions could allow an ...7.8
- CVE-2022-20796ClamAV Truncated File Denial of Service Vulnerability Affecting Cisco Products: April 20226.5
- CVE-2022-20785ClamAV HTML Scanning Memory Leak Vulnerability Affecting Cisco Products: April 20227.5
- CVE-2022-20771ClamAV TIFF File Parsing Denial of Service Vulnerability Affecting Cisco Products: April 20227.5
- CVE-2022-20770ClamAV CHM File Parsing Denial of Service Vulnerability Affecting Cisco Products: April 20228.6
Product normalization is registry-driven with AI assist and human review. How it works