Search

Find a vulnerability

Search criteria

    4 vulnerabilities found for Cisco Secure Endpoint Private Cloud Console by Cisco

    CVE-2024-20290 (GCVE-0-2024-20290)

    Vulnerability from nvd – Published: 2024-02-07 16:16 – Updated: 2025-02-13 17:32
    VLAI
    Summary
    A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to an incorrect check for end-of-string values during scanning, which may result in a heap buffer over-read. An attacker could exploit this vulnerability by submitting a crafted file containing OLE2 content to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to cause the ClamAV scanning process to terminate, resulting in a DoS condition on the affected software and consuming available system resources. For a description of this vulnerability, see the ClamAV blog .
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Secure Endpoint Affected: 6.0.9
    Affected: 6.0.7
    Affected: 6.1.5
    Affected: 6.1.7
    Affected: 6.1.9
    Affected: 6.2.1
    Affected: 6.2.5
    Affected: 6.2.19
    Affected: 6.2.3
    Affected: 6.2.9
    Affected: 6.3.5
    Affected: 6.3.1
    Affected: 6.3.7
    Affected: 6.3.3
    Affected: 7.0.5
    Affected: 7.1.1
    Affected: 7.1.5
    Affected: 7.2.13
    Affected: 7.2.7
    Affected: 7.2.3
    Affected: 7.2.11
    Affected: 7.2.5
    Affected: 7.3.1
    Affected: 7.3.9
    Affected: 7.3.3
    Affected: 7.3.5
    Affected: 8.1.7
    Affected: 8.1.5
    Affected: 8.1.3.21242
    Affected: 8.1.7.21512
    Affected: 8.1.3
    Affected: 8.1.5.21322
    Affected: 8.1.7.21417
    Create a notification for this product.
    Cisco Cisco Secure Endpoint Private Cloud Administration Portal Affected: N/A
    Create a notification for this product.
    Cisco Cisco Secure Endpoint Private Cloud Console Affected: N/A
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T21:59:41.158Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "cisco-sa-clamav-hDffu6t",
                "tags": [
                  "x_transferred"
                ],
                "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-hDffu6t"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6MUDUPAHAAV6FPB2C2QIQCFJ4SHYBOTY/"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5FXZYVDNV66RNMNVJOHAJAYRZV4U64CQ/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-20290",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-02-07T20:34:45.866511Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-07T20:23:12.944Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Secure Endpoint",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "6.0.9"
                },
                {
                  "status": "affected",
                  "version": "6.0.7"
                },
                {
                  "status": "affected",
                  "version": "6.1.5"
                },
                {
                  "status": "affected",
                  "version": "6.1.7"
                },
                {
                  "status": "affected",
                  "version": "6.1.9"
                },
                {
                  "status": "affected",
                  "version": "6.2.1"
                },
                {
                  "status": "affected",
                  "version": "6.2.5"
                },
                {
                  "status": "affected",
                  "version": "6.2.19"
                },
                {
                  "status": "affected",
                  "version": "6.2.3"
                },
                {
                  "status": "affected",
                  "version": "6.2.9"
                },
                {
                  "status": "affected",
                  "version": "6.3.5"
                },
                {
                  "status": "affected",
                  "version": "6.3.1"
                },
                {
                  "status": "affected",
                  "version": "6.3.7"
                },
                {
                  "status": "affected",
                  "version": "6.3.3"
                },
                {
                  "status": "affected",
                  "version": "7.0.5"
                },
                {
                  "status": "affected",
                  "version": "7.1.1"
                },
                {
                  "status": "affected",
                  "version": "7.1.5"
                },
                {
                  "status": "affected",
                  "version": "7.2.13"
                },
                {
                  "status": "affected",
                  "version": "7.2.7"
                },
                {
                  "status": "affected",
                  "version": "7.2.3"
                },
                {
                  "status": "affected",
                  "version": "7.2.11"
                },
                {
                  "status": "affected",
                  "version": "7.2.5"
                },
                {
                  "status": "affected",
                  "version": "7.3.1"
                },
                {
                  "status": "affected",
                  "version": "7.3.9"
                },
                {
                  "status": "affected",
                  "version": "7.3.3"
                },
                {
                  "status": "affected",
                  "version": "7.3.5"
                },
                {
                  "status": "affected",
                  "version": "8.1.7"
                },
                {
                  "status": "affected",
                  "version": "8.1.5"
                },
                {
                  "status": "affected",
                  "version": "8.1.3.21242"
                },
                {
                  "status": "affected",
                  "version": "8.1.7.21512"
                },
                {
                  "status": "affected",
                  "version": "8.1.3"
                },
                {
                  "status": "affected",
                  "version": "8.1.5.21322"
                },
                {
                  "status": "affected",
                  "version": "8.1.7.21417"
                }
              ]
            },
            {
              "product": "Cisco Secure Endpoint Private Cloud Administration Portal",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "N/A"
                }
              ]
            },
            {
              "product": "Cisco Secure Endpoint Private Cloud Console",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "N/A"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.\r\n\r This vulnerability is due to an incorrect check for end-of-string values during scanning, which may result in a heap buffer over-read. An attacker could exploit this vulnerability by submitting a crafted file containing OLE2 content to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to cause the ClamAV scanning process to terminate, resulting in a DoS condition on the affected software and consuming available system resources.\r\n\r For a description of this vulnerability, see the ClamAV blog ."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-126",
                  "description": "Buffer Over-read",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-02-14T03:06:14.395Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-clamav-hDffu6t",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-hDffu6t"
            },
            {
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6MUDUPAHAAV6FPB2C2QIQCFJ4SHYBOTY/"
            },
            {
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5FXZYVDNV66RNMNVJOHAJAYRZV4U64CQ/"
            }
          ],
          "source": {
            "advisory": "cisco-sa-clamav-hDffu6t",
            "defects": [
              "CSCwh88483",
              "CSCwh88484"
            ],
            "discovery": "INTERNAL"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2024-20290",
        "datePublished": "2024-02-07T16:16:00.975Z",
        "dateReserved": "2023-11-08T15:08:07.627Z",
        "dateUpdated": "2025-02-13T17:32:30.128Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-20197 (GCVE-0-2023-20197)

    Vulnerability from nvd – Published: 2023-08-16 21:43 – Updated: 2024-08-02 09:05
    VLAI
    Summary
    A vulnerability in the filesystem image parser for Hierarchical File System Plus (HFS+) of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to an incorrect check for completion when a file is decompressed, which may result in a loop condition that could cause the affected software to stop responding. An attacker could exploit this vulnerability by submitting a crafted HFS+ filesystem image to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to cause the ClamAV scanning process to stop responding, resulting in a DoS condition on the affected software and consuming available system resources. For a description of this vulnerability, see the ClamAV blog .
    CWE
    • CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Secure Endpoint Affected: 6.0.9
    Affected: 6.0.7
    Affected: 6.1.5
    Affected: 6.1.7
    Affected: 6.1.9
    Affected: 6.2.1
    Affected: 6.2.5
    Affected: 6.2.19
    Affected: 6.2.9
    Affected: 6.3.5
    Affected: 6.3.1
    Affected: 6.3.7
    Affected: 6.3.3
    Affected: 7.0.5
    Affected: 7.1.1
    Affected: 7.1.5
    Affected: 1.12.1
    Affected: 1.12.2
    Affected: 1.12.5
    Affected: 1.12.0
    Affected: 1.12.6
    Affected: 1.12.3
    Affected: 1.12.7
    Affected: 1.12.4
    Affected: 1.13.0
    Affected: 1.13.1
    Affected: 1.13.2
    Affected: 1.11.0
    Affected: 1.10.2
    Affected: 1.10.1
    Affected: 1.10.0
    Affected: 1.14.0
    Affected: 1.6.0
    Affected: 1.9.0
    Affected: 1.9.1
    Affected: 1.8.1
    Affected: 1.8.0
    Affected: 1.8.4
    Affected: 1.7.0
    Affected: 7.2.13
    Affected: 7.2.7
    Affected: 7.2.3
    Affected: 7.2.11
    Affected: 7.2.5
    Affected: 7.3.3
    Affected: 7.3.5
    Affected: 8.1.5
    Create a notification for this product.
    Cisco Cisco Secure Endpoint Private Cloud Console Affected: N/A
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T09:05:35.440Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "cisco-sa-clamav-rNwNEEee",
                "tags": [
                  "x_transferred"
                ],
                "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-rNwNEEee"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Secure Endpoint",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "6.0.9"
                },
                {
                  "status": "affected",
                  "version": "6.0.7"
                },
                {
                  "status": "affected",
                  "version": "6.1.5"
                },
                {
                  "status": "affected",
                  "version": "6.1.7"
                },
                {
                  "status": "affected",
                  "version": "6.1.9"
                },
                {
                  "status": "affected",
                  "version": "6.2.1"
                },
                {
                  "status": "affected",
                  "version": "6.2.5"
                },
                {
                  "status": "affected",
                  "version": "6.2.19"
                },
                {
                  "status": "affected",
                  "version": "6.2.9"
                },
                {
                  "status": "affected",
                  "version": "6.3.5"
                },
                {
                  "status": "affected",
                  "version": "6.3.1"
                },
                {
                  "status": "affected",
                  "version": "6.3.7"
                },
                {
                  "status": "affected",
                  "version": "6.3.3"
                },
                {
                  "status": "affected",
                  "version": "7.0.5"
                },
                {
                  "status": "affected",
                  "version": "7.1.1"
                },
                {
                  "status": "affected",
                  "version": "7.1.5"
                },
                {
                  "status": "affected",
                  "version": "1.12.1"
                },
                {
                  "status": "affected",
                  "version": "1.12.2"
                },
                {
                  "status": "affected",
                  "version": "1.12.5"
                },
                {
                  "status": "affected",
                  "version": "1.12.0"
                },
                {
                  "status": "affected",
                  "version": "1.12.6"
                },
                {
                  "status": "affected",
                  "version": "1.12.3"
                },
                {
                  "status": "affected",
                  "version": "1.12.7"
                },
                {
                  "status": "affected",
                  "version": "1.12.4"
                },
                {
                  "status": "affected",
                  "version": "1.13.0"
                },
                {
                  "status": "affected",
                  "version": "1.13.1"
                },
                {
                  "status": "affected",
                  "version": "1.13.2"
                },
                {
                  "status": "affected",
                  "version": "1.11.0"
                },
                {
                  "status": "affected",
                  "version": "1.10.2"
                },
                {
                  "status": "affected",
                  "version": "1.10.1"
                },
                {
                  "status": "affected",
                  "version": "1.10.0"
                },
                {
                  "status": "affected",
                  "version": "1.14.0"
                },
                {
                  "status": "affected",
                  "version": "1.6.0"
                },
                {
                  "status": "affected",
                  "version": "1.9.0"
                },
                {
                  "status": "affected",
                  "version": "1.9.1"
                },
                {
                  "status": "affected",
                  "version": "1.8.1"
                },
                {
                  "status": "affected",
                  "version": "1.8.0"
                },
                {
                  "status": "affected",
                  "version": "1.8.4"
                },
                {
                  "status": "affected",
                  "version": "1.7.0"
                },
                {
                  "status": "affected",
                  "version": "7.2.13"
                },
                {
                  "status": "affected",
                  "version": "7.2.7"
                },
                {
                  "status": "affected",
                  "version": "7.2.3"
                },
                {
                  "status": "affected",
                  "version": "7.2.11"
                },
                {
                  "status": "affected",
                  "version": "7.2.5"
                },
                {
                  "status": "affected",
                  "version": "7.3.3"
                },
                {
                  "status": "affected",
                  "version": "7.3.5"
                },
                {
                  "status": "affected",
                  "version": "8.1.5"
                }
              ]
            },
            {
              "product": "Cisco Secure Endpoint Private Cloud Console",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "N/A"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the filesystem image parser for Hierarchical File System Plus (HFS+) of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.\r\n\r This vulnerability is due to an incorrect check for completion when a file is decompressed, which may result in a loop condition that could cause the affected software to stop responding. An attacker could exploit this vulnerability by submitting a crafted HFS+ filesystem image to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to cause the ClamAV scanning process to stop responding, resulting in a DoS condition on the affected software and consuming available system resources.\r\n\r For a description of this vulnerability, see the ClamAV blog ."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is aware that proof-of-concept exploit code is available for the vulnerability that is described in this advisory.\r\n\r\nThe Cisco PSIRT is not aware of any malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-835",
                  "description": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-25T16:57:55.562Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-clamav-rNwNEEee",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-rNwNEEee"
            }
          ],
          "source": {
            "advisory": "cisco-sa-clamav-rNwNEEee",
            "defects": [
              "CSCwf39307",
              "CSCwf39308",
              "CSCwf39309",
              "CSCwf39310"
            ],
            "discovery": "EXTERNAL"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2023-20197",
        "datePublished": "2023-08-16T21:43:11.287Z",
        "dateReserved": "2022-10-27T18:47:50.365Z",
        "dateUpdated": "2024-08-02T09:05:35.440Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-20290 (GCVE-0-2024-20290)

    Vulnerability from cvelistv5 – Published: 2024-02-07 16:16 – Updated: 2025-02-13 17:32
    VLAI
    Summary
    A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to an incorrect check for end-of-string values during scanning, which may result in a heap buffer over-read. An attacker could exploit this vulnerability by submitting a crafted file containing OLE2 content to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to cause the ClamAV scanning process to terminate, resulting in a DoS condition on the affected software and consuming available system resources. For a description of this vulnerability, see the ClamAV blog .
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Secure Endpoint Affected: 6.0.9
    Affected: 6.0.7
    Affected: 6.1.5
    Affected: 6.1.7
    Affected: 6.1.9
    Affected: 6.2.1
    Affected: 6.2.5
    Affected: 6.2.19
    Affected: 6.2.3
    Affected: 6.2.9
    Affected: 6.3.5
    Affected: 6.3.1
    Affected: 6.3.7
    Affected: 6.3.3
    Affected: 7.0.5
    Affected: 7.1.1
    Affected: 7.1.5
    Affected: 7.2.13
    Affected: 7.2.7
    Affected: 7.2.3
    Affected: 7.2.11
    Affected: 7.2.5
    Affected: 7.3.1
    Affected: 7.3.9
    Affected: 7.3.3
    Affected: 7.3.5
    Affected: 8.1.7
    Affected: 8.1.5
    Affected: 8.1.3.21242
    Affected: 8.1.7.21512
    Affected: 8.1.3
    Affected: 8.1.5.21322
    Affected: 8.1.7.21417
    Create a notification for this product.
    Cisco Cisco Secure Endpoint Private Cloud Administration Portal Affected: N/A
    Create a notification for this product.
    Cisco Cisco Secure Endpoint Private Cloud Console Affected: N/A
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T21:59:41.158Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "cisco-sa-clamav-hDffu6t",
                "tags": [
                  "x_transferred"
                ],
                "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-hDffu6t"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6MUDUPAHAAV6FPB2C2QIQCFJ4SHYBOTY/"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5FXZYVDNV66RNMNVJOHAJAYRZV4U64CQ/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-20290",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-02-07T20:34:45.866511Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-07T20:23:12.944Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Secure Endpoint",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "6.0.9"
                },
                {
                  "status": "affected",
                  "version": "6.0.7"
                },
                {
                  "status": "affected",
                  "version": "6.1.5"
                },
                {
                  "status": "affected",
                  "version": "6.1.7"
                },
                {
                  "status": "affected",
                  "version": "6.1.9"
                },
                {
                  "status": "affected",
                  "version": "6.2.1"
                },
                {
                  "status": "affected",
                  "version": "6.2.5"
                },
                {
                  "status": "affected",
                  "version": "6.2.19"
                },
                {
                  "status": "affected",
                  "version": "6.2.3"
                },
                {
                  "status": "affected",
                  "version": "6.2.9"
                },
                {
                  "status": "affected",
                  "version": "6.3.5"
                },
                {
                  "status": "affected",
                  "version": "6.3.1"
                },
                {
                  "status": "affected",
                  "version": "6.3.7"
                },
                {
                  "status": "affected",
                  "version": "6.3.3"
                },
                {
                  "status": "affected",
                  "version": "7.0.5"
                },
                {
                  "status": "affected",
                  "version": "7.1.1"
                },
                {
                  "status": "affected",
                  "version": "7.1.5"
                },
                {
                  "status": "affected",
                  "version": "7.2.13"
                },
                {
                  "status": "affected",
                  "version": "7.2.7"
                },
                {
                  "status": "affected",
                  "version": "7.2.3"
                },
                {
                  "status": "affected",
                  "version": "7.2.11"
                },
                {
                  "status": "affected",
                  "version": "7.2.5"
                },
                {
                  "status": "affected",
                  "version": "7.3.1"
                },
                {
                  "status": "affected",
                  "version": "7.3.9"
                },
                {
                  "status": "affected",
                  "version": "7.3.3"
                },
                {
                  "status": "affected",
                  "version": "7.3.5"
                },
                {
                  "status": "affected",
                  "version": "8.1.7"
                },
                {
                  "status": "affected",
                  "version": "8.1.5"
                },
                {
                  "status": "affected",
                  "version": "8.1.3.21242"
                },
                {
                  "status": "affected",
                  "version": "8.1.7.21512"
                },
                {
                  "status": "affected",
                  "version": "8.1.3"
                },
                {
                  "status": "affected",
                  "version": "8.1.5.21322"
                },
                {
                  "status": "affected",
                  "version": "8.1.7.21417"
                }
              ]
            },
            {
              "product": "Cisco Secure Endpoint Private Cloud Administration Portal",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "N/A"
                }
              ]
            },
            {
              "product": "Cisco Secure Endpoint Private Cloud Console",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "N/A"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.\r\n\r This vulnerability is due to an incorrect check for end-of-string values during scanning, which may result in a heap buffer over-read. An attacker could exploit this vulnerability by submitting a crafted file containing OLE2 content to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to cause the ClamAV scanning process to terminate, resulting in a DoS condition on the affected software and consuming available system resources.\r\n\r For a description of this vulnerability, see the ClamAV blog ."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-126",
                  "description": "Buffer Over-read",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-02-14T03:06:14.395Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-clamav-hDffu6t",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-hDffu6t"
            },
            {
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6MUDUPAHAAV6FPB2C2QIQCFJ4SHYBOTY/"
            },
            {
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5FXZYVDNV66RNMNVJOHAJAYRZV4U64CQ/"
            }
          ],
          "source": {
            "advisory": "cisco-sa-clamav-hDffu6t",
            "defects": [
              "CSCwh88483",
              "CSCwh88484"
            ],
            "discovery": "INTERNAL"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2024-20290",
        "datePublished": "2024-02-07T16:16:00.975Z",
        "dateReserved": "2023-11-08T15:08:07.627Z",
        "dateUpdated": "2025-02-13T17:32:30.128Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-20197 (GCVE-0-2023-20197)

    Vulnerability from cvelistv5 – Published: 2023-08-16 21:43 – Updated: 2024-08-02 09:05
    VLAI
    Summary
    A vulnerability in the filesystem image parser for Hierarchical File System Plus (HFS+) of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to an incorrect check for completion when a file is decompressed, which may result in a loop condition that could cause the affected software to stop responding. An attacker could exploit this vulnerability by submitting a crafted HFS+ filesystem image to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to cause the ClamAV scanning process to stop responding, resulting in a DoS condition on the affected software and consuming available system resources. For a description of this vulnerability, see the ClamAV blog .
    CWE
    • CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')
    Assigner
    Impacted products
    Vendor Product Version
    Cisco Cisco Secure Endpoint Affected: 6.0.9
    Affected: 6.0.7
    Affected: 6.1.5
    Affected: 6.1.7
    Affected: 6.1.9
    Affected: 6.2.1
    Affected: 6.2.5
    Affected: 6.2.19
    Affected: 6.2.9
    Affected: 6.3.5
    Affected: 6.3.1
    Affected: 6.3.7
    Affected: 6.3.3
    Affected: 7.0.5
    Affected: 7.1.1
    Affected: 7.1.5
    Affected: 1.12.1
    Affected: 1.12.2
    Affected: 1.12.5
    Affected: 1.12.0
    Affected: 1.12.6
    Affected: 1.12.3
    Affected: 1.12.7
    Affected: 1.12.4
    Affected: 1.13.0
    Affected: 1.13.1
    Affected: 1.13.2
    Affected: 1.11.0
    Affected: 1.10.2
    Affected: 1.10.1
    Affected: 1.10.0
    Affected: 1.14.0
    Affected: 1.6.0
    Affected: 1.9.0
    Affected: 1.9.1
    Affected: 1.8.1
    Affected: 1.8.0
    Affected: 1.8.4
    Affected: 1.7.0
    Affected: 7.2.13
    Affected: 7.2.7
    Affected: 7.2.3
    Affected: 7.2.11
    Affected: 7.2.5
    Affected: 7.3.3
    Affected: 7.3.5
    Affected: 8.1.5
    Create a notification for this product.
    Cisco Cisco Secure Endpoint Private Cloud Console Affected: N/A
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T09:05:35.440Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "cisco-sa-clamav-rNwNEEee",
                "tags": [
                  "x_transferred"
                ],
                "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-rNwNEEee"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Cisco Secure Endpoint",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "6.0.9"
                },
                {
                  "status": "affected",
                  "version": "6.0.7"
                },
                {
                  "status": "affected",
                  "version": "6.1.5"
                },
                {
                  "status": "affected",
                  "version": "6.1.7"
                },
                {
                  "status": "affected",
                  "version": "6.1.9"
                },
                {
                  "status": "affected",
                  "version": "6.2.1"
                },
                {
                  "status": "affected",
                  "version": "6.2.5"
                },
                {
                  "status": "affected",
                  "version": "6.2.19"
                },
                {
                  "status": "affected",
                  "version": "6.2.9"
                },
                {
                  "status": "affected",
                  "version": "6.3.5"
                },
                {
                  "status": "affected",
                  "version": "6.3.1"
                },
                {
                  "status": "affected",
                  "version": "6.3.7"
                },
                {
                  "status": "affected",
                  "version": "6.3.3"
                },
                {
                  "status": "affected",
                  "version": "7.0.5"
                },
                {
                  "status": "affected",
                  "version": "7.1.1"
                },
                {
                  "status": "affected",
                  "version": "7.1.5"
                },
                {
                  "status": "affected",
                  "version": "1.12.1"
                },
                {
                  "status": "affected",
                  "version": "1.12.2"
                },
                {
                  "status": "affected",
                  "version": "1.12.5"
                },
                {
                  "status": "affected",
                  "version": "1.12.0"
                },
                {
                  "status": "affected",
                  "version": "1.12.6"
                },
                {
                  "status": "affected",
                  "version": "1.12.3"
                },
                {
                  "status": "affected",
                  "version": "1.12.7"
                },
                {
                  "status": "affected",
                  "version": "1.12.4"
                },
                {
                  "status": "affected",
                  "version": "1.13.0"
                },
                {
                  "status": "affected",
                  "version": "1.13.1"
                },
                {
                  "status": "affected",
                  "version": "1.13.2"
                },
                {
                  "status": "affected",
                  "version": "1.11.0"
                },
                {
                  "status": "affected",
                  "version": "1.10.2"
                },
                {
                  "status": "affected",
                  "version": "1.10.1"
                },
                {
                  "status": "affected",
                  "version": "1.10.0"
                },
                {
                  "status": "affected",
                  "version": "1.14.0"
                },
                {
                  "status": "affected",
                  "version": "1.6.0"
                },
                {
                  "status": "affected",
                  "version": "1.9.0"
                },
                {
                  "status": "affected",
                  "version": "1.9.1"
                },
                {
                  "status": "affected",
                  "version": "1.8.1"
                },
                {
                  "status": "affected",
                  "version": "1.8.0"
                },
                {
                  "status": "affected",
                  "version": "1.8.4"
                },
                {
                  "status": "affected",
                  "version": "1.7.0"
                },
                {
                  "status": "affected",
                  "version": "7.2.13"
                },
                {
                  "status": "affected",
                  "version": "7.2.7"
                },
                {
                  "status": "affected",
                  "version": "7.2.3"
                },
                {
                  "status": "affected",
                  "version": "7.2.11"
                },
                {
                  "status": "affected",
                  "version": "7.2.5"
                },
                {
                  "status": "affected",
                  "version": "7.3.3"
                },
                {
                  "status": "affected",
                  "version": "7.3.5"
                },
                {
                  "status": "affected",
                  "version": "8.1.5"
                }
              ]
            },
            {
              "product": "Cisco Secure Endpoint Private Cloud Console",
              "vendor": "Cisco",
              "versions": [
                {
                  "status": "affected",
                  "version": "N/A"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability in the filesystem image parser for Hierarchical File System Plus (HFS+) of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.\r\n\r This vulnerability is due to an incorrect check for completion when a file is decompressed, which may result in a loop condition that could cause the affected software to stop responding. An attacker could exploit this vulnerability by submitting a crafted HFS+ filesystem image to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to cause the ClamAV scanning process to stop responding, resulting in a DoS condition on the affected software and consuming available system resources.\r\n\r For a description of this vulnerability, see the ClamAV blog ."
            }
          ],
          "exploits": [
            {
              "lang": "en",
              "value": "The Cisco PSIRT is aware that proof-of-concept exploit code is available for the vulnerability that is described in this advisory.\r\n\r\nThe Cisco PSIRT is not aware of any malicious use of the vulnerability that is described in this advisory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "cvssV3_1"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-835",
                  "description": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
                  "lang": "en",
                  "type": "cwe"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-01-25T16:57:55.562Z",
            "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
            "shortName": "cisco"
          },
          "references": [
            {
              "name": "cisco-sa-clamav-rNwNEEee",
              "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-rNwNEEee"
            }
          ],
          "source": {
            "advisory": "cisco-sa-clamav-rNwNEEee",
            "defects": [
              "CSCwf39307",
              "CSCwf39308",
              "CSCwf39309",
              "CSCwf39310"
            ],
            "discovery": "EXTERNAL"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "assignerShortName": "cisco",
        "cveId": "CVE-2023-20197",
        "datePublished": "2023-08-16T21:43:11.287Z",
        "dateReserved": "2022-10-27T18:47:50.365Z",
        "dateUpdated": "2024-08-02T09:05:35.440Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }