Analysis Summary

CVE-2024-20380

Cisco ClamAV is vulnerable to a denial of service, caused by improper input validation by the he HTML file parser. By submitting a specially crafted file containing HTML content to be scanned, a remote attacker could exploit this vulnerability to cause the ClamAV scanning process to terminate, and results in a denial of service condition.

Impact

• Denial of Service

Indicators of Compromise

CVE

• CVE-2024-20380

Affected Vendors

Remediation

Upgrade to the latest version of Cisco ClamAV, available from the Cisco ClamAV Website.

Cisco ClamAV Website