Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/clamav@0.103.6%2Bdfsg-0%2Bdeb10u1
Typedeb
Namespacedebian
Nameclamav
Version0.103.6+dfsg-0+deb10u1
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version1.4.4+dfsg-1
Latest_non_vulnerable_version1.4.4+dfsg-1
Affected_by_vulnerabilities
0
url VCID-2aju-u36p-gug9
vulnerability_id VCID-2aju-u36p-gug9
summary Multiple vulnerabilities have been discovered in ClamAV, the worst of which could result in remote code execution.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-20796
reference_id
reference_type
scores
0
value 0.00033
scoring_system epss
scoring_elements 0.09409
published_at 2026-04-07T12:55:00Z
1
value 0.00033
scoring_system epss
scoring_elements 0.09483
published_at 2026-04-08T12:55:00Z
2
value 0.00033
scoring_system epss
scoring_elements 0.09497
published_at 2026-04-04T12:55:00Z
3
value 0.00033
scoring_system epss
scoring_elements 0.09448
published_at 2026-04-02T12:55:00Z
4
value 0.00033
scoring_system epss
scoring_elements 0.09544
published_at 2026-04-21T12:55:00Z
5
value 0.00033
scoring_system epss
scoring_elements 0.09394
published_at 2026-04-18T12:55:00Z
6
value 0.00033
scoring_system epss
scoring_elements 0.09393
published_at 2026-04-16T12:55:00Z
7
value 0.00033
scoring_system epss
scoring_elements 0.09498
published_at 2026-04-13T12:55:00Z
8
value 0.00033
scoring_system epss
scoring_elements 0.09516
published_at 2026-04-12T12:55:00Z
9
value 0.00033
scoring_system epss
scoring_elements 0.09545
published_at 2026-04-11T12:55:00Z
10
value 0.00033
scoring_system epss
scoring_elements 0.0953
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-20796
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-20796
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-20796
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7RV6BLIATIJE74SQ6NG5ZC4JK5MMDQ2R/
reference_id 7RV6BLIATIJE74SQ6NG5ZC4JK5MMDQ2R
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-06T15:58:27Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7RV6BLIATIJE74SQ6NG5ZC4JK5MMDQ2R/
4
reference_url https://security.archlinux.org/AVG-2722
reference_id AVG-2722
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2722
5
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BX5ZXNHP4NFYQ5BFSKY3WT7NTBZUYG7L/
reference_id BX5ZXNHP4NFYQ5BFSKY3WT7NTBZUYG7L
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-06T15:58:27Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BX5ZXNHP4NFYQ5BFSKY3WT7NTBZUYG7L/
6
reference_url https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-dos-vL9x58p4
reference_id cisco-sa-clamav-dos-vL9x58p4
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-06T15:58:27Z/
url https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-dos-vL9x58p4
7
reference_url https://security.gentoo.org/glsa/202310-01
reference_id GLSA-202310-01
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-06T15:58:27Z/
url https://security.gentoo.org/glsa/202310-01
8
reference_url https://lists.debian.org/debian-lts-announce/2022/06/msg00004.html
reference_id msg00004.html
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-06T15:58:27Z/
url https://lists.debian.org/debian-lts-announce/2022/06/msg00004.html
9
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N4NNBIJVG6Z4PDIKUZXTYXICYUAYAZ56/
reference_id N4NNBIJVG6Z4PDIKUZXTYXICYUAYAZ56
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-06T15:58:27Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N4NNBIJVG6Z4PDIKUZXTYXICYUAYAZ56/
10
reference_url https://usn.ubuntu.com/5423-1/
reference_id USN-5423-1
reference_type
scores
url https://usn.ubuntu.com/5423-1/
11
reference_url https://usn.ubuntu.com/5423-2/
reference_id USN-5423-2
reference_type
scores
url https://usn.ubuntu.com/5423-2/
fixed_packages
0
url pkg:deb/debian/clamav@0.103.10%2Bdfsg-0%2Bdeb11u1
purl pkg:deb/debian/clamav@0.103.10%2Bdfsg-0%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5kba-63mx-hya7
1
vulnerability VCID-63vt-1nc8-6kfc
2
vulnerability VCID-ggz7-h35v-p7ep
3
vulnerability VCID-vdhk-r67a-s3fr
4
vulnerability VCID-wjvc-p75d-p3a9
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@0.103.10%252Bdfsg-0%252Bdeb11u1
aliases CVE-2022-20796
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2aju-u36p-gug9
1
url VCID-4z4r-2w8m-r7dz
vulnerability_id VCID-4z4r-2w8m-r7dz
summary Multiple vulnerabilities have been discovered in ClamAV, the worst of which could result in remote code execution.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-20032
reference_id
reference_type
scores
0
value 0.07124
scoring_system epss
scoring_elements 0.91559
published_at 2026-04-21T12:55:00Z
1
value 0.07124
scoring_system epss
scoring_elements 0.91542
published_at 2026-04-13T12:55:00Z
2
value 0.07124
scoring_system epss
scoring_elements 0.91544
published_at 2026-04-12T12:55:00Z
3
value 0.07124
scoring_system epss
scoring_elements 0.91564
published_at 2026-04-16T12:55:00Z
4
value 0.07124
scoring_system epss
scoring_elements 0.9156
published_at 2026-04-18T12:55:00Z
5
value 0.07305
scoring_system epss
scoring_elements 0.91677
published_at 2026-04-09T12:55:00Z
6
value 0.07305
scoring_system epss
scoring_elements 0.91644
published_at 2026-04-02T12:55:00Z
7
value 0.07305
scoring_system epss
scoring_elements 0.9165
published_at 2026-04-04T12:55:00Z
8
value 0.07305
scoring_system epss
scoring_elements 0.91658
published_at 2026-04-07T12:55:00Z
9
value 0.07305
scoring_system epss
scoring_elements 0.9167
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-20032
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-20032
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-20032
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031509
reference_id 1031509
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031509
4
reference_url https://security.gentoo.org/glsa/202310-01
reference_id GLSA-202310-01
reference_type
scores
url https://security.gentoo.org/glsa/202310-01
5
reference_url https://usn.ubuntu.com/5887-1/
reference_id USN-5887-1
reference_type
scores
url https://usn.ubuntu.com/5887-1/
fixed_packages
0
url pkg:deb/debian/clamav@0.103.10%2Bdfsg-0%2Bdeb11u1
purl pkg:deb/debian/clamav@0.103.10%2Bdfsg-0%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5kba-63mx-hya7
1
vulnerability VCID-63vt-1nc8-6kfc
2
vulnerability VCID-ggz7-h35v-p7ep
3
vulnerability VCID-vdhk-r67a-s3fr
4
vulnerability VCID-wjvc-p75d-p3a9
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@0.103.10%252Bdfsg-0%252Bdeb11u1
aliases CVE-2023-20032
risk_score 2.5
exploitability 0.5
weighted_severity 4.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4z4r-2w8m-r7dz
2
url VCID-63vt-1nc8-6kfc
vulnerability_id VCID-63vt-1nc8-6kfc
summary A vulnerability in the PDF scanning processes of ClamAV could allow an unauthenticated, remote attacker to cause a buffer overflow condition, cause a denial of service (DoS) condition, or execute arbitrary code on an affected device. This vulnerability exists because memory buffers are allocated incorrectly when PDF files are processed. An attacker could exploit this vulnerability by submitting a crafted PDF file to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to trigger a buffer overflow, likely resulting in the termination of the ClamAV scanning process and a DoS condition on the affected software. Although unproven, there is also a possibility that an attacker could leverage the buffer overflow to execute arbitrary code with the privileges of the ClamAV process.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-20260
reference_id
reference_type
scores
0
value 0.00739
scoring_system epss
scoring_elements 0.72859
published_at 2026-04-09T12:55:00Z
1
value 0.00739
scoring_system epss
scoring_elements 0.7286
published_at 2026-04-13T12:55:00Z
2
value 0.00739
scoring_system epss
scoring_elements 0.72811
published_at 2026-04-02T12:55:00Z
3
value 0.00739
scoring_system epss
scoring_elements 0.72867
published_at 2026-04-12T12:55:00Z
4
value 0.00739
scoring_system epss
scoring_elements 0.72883
published_at 2026-04-11T12:55:00Z
5
value 0.00739
scoring_system epss
scoring_elements 0.72831
published_at 2026-04-04T12:55:00Z
6
value 0.00739
scoring_system epss
scoring_elements 0.72807
published_at 2026-04-07T12:55:00Z
7
value 0.00739
scoring_system epss
scoring_elements 0.72845
published_at 2026-04-08T12:55:00Z
8
value 0.01474
scoring_system epss
scoring_elements 0.80983
published_at 2026-04-21T12:55:00Z
9
value 0.01474
scoring_system epss
scoring_elements 0.80981
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-20260
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-20260
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-20260
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108046
reference_id 1108046
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108046
4
reference_url https://security.archlinux.org/AVG-2903
reference_id AVG-2903
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2903
5
reference_url https://blog.clamav.net/2025/06/clamav-143-and-109-security-patch.html
reference_id clamav-143-and-109-security-patch.html
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-18T17:49:35Z/
url https://blog.clamav.net/2025/06/clamav-143-and-109-security-patch.html
6
reference_url https://usn.ubuntu.com/7615-1/
reference_id USN-7615-1
reference_type
scores
url https://usn.ubuntu.com/7615-1/
7
reference_url https://usn.ubuntu.com/7615-2/
reference_id USN-7615-2
reference_type
scores
url https://usn.ubuntu.com/7615-2/
fixed_packages
0
url pkg:deb/debian/clamav@1.4.3%2Bdfsg-1~deb12u2
purl pkg:deb/debian/clamav@1.4.3%2Bdfsg-1~deb12u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5kba-63mx-hya7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@1.4.3%252Bdfsg-1~deb12u2
aliases CVE-2025-20260
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-63vt-1nc8-6kfc
3
url VCID-d3u3-epeb-guh9
vulnerability_id VCID-d3u3-epeb-guh9
summary Multiple vulnerabilities have been discovered in ClamAV, the worst of which could result in remote code execution.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-20052
reference_id
reference_type
scores
0
value 0.03563
scoring_system epss
scoring_elements 0.87702
published_at 2026-04-08T12:55:00Z
1
value 0.03563
scoring_system epss
scoring_elements 0.87708
published_at 2026-04-09T12:55:00Z
2
value 0.05699
scoring_system epss
scoring_elements 0.90427
published_at 2026-04-21T12:55:00Z
3
value 0.05699
scoring_system epss
scoring_elements 0.90421
published_at 2026-04-11T12:55:00Z
4
value 0.05699
scoring_system epss
scoring_elements 0.9042
published_at 2026-04-12T12:55:00Z
5
value 0.05699
scoring_system epss
scoring_elements 0.90413
published_at 2026-04-13T12:55:00Z
6
value 0.05699
scoring_system epss
scoring_elements 0.90429
published_at 2026-04-18T12:55:00Z
7
value 0.06327
scoring_system epss
scoring_elements 0.90953
published_at 2026-04-07T12:55:00Z
8
value 0.06327
scoring_system epss
scoring_elements 0.90942
published_at 2026-04-04T12:55:00Z
9
value 0.06327
scoring_system epss
scoring_elements 0.90933
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-20052
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-20052
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-20052
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031509
reference_id 1031509
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031509
4
reference_url https://security.gentoo.org/glsa/202310-01
reference_id GLSA-202310-01
reference_type
scores
url https://security.gentoo.org/glsa/202310-01
5
reference_url https://usn.ubuntu.com/5887-1/
reference_id USN-5887-1
reference_type
scores
url https://usn.ubuntu.com/5887-1/
fixed_packages
0
url pkg:deb/debian/clamav@0.103.10%2Bdfsg-0%2Bdeb11u1
purl pkg:deb/debian/clamav@0.103.10%2Bdfsg-0%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5kba-63mx-hya7
1
vulnerability VCID-63vt-1nc8-6kfc
2
vulnerability VCID-ggz7-h35v-p7ep
3
vulnerability VCID-vdhk-r67a-s3fr
4
vulnerability VCID-wjvc-p75d-p3a9
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@0.103.10%252Bdfsg-0%252Bdeb11u1
aliases CVE-2023-20052
risk_score 1.4
exploitability 0.5
weighted_severity 2.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-d3u3-epeb-guh9
4
url VCID-dn26-zfsc-ryec
vulnerability_id VCID-dn26-zfsc-ryec
summary Multiple vulnerabilities have been discovered in ClamAV, the worst of which could result in remote code execution.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-20785
reference_id
reference_type
scores
0
value 0.01018
scoring_system epss
scoring_elements 0.77146
published_at 2026-04-07T12:55:00Z
1
value 0.01018
scoring_system epss
scoring_elements 0.77191
published_at 2026-04-13T12:55:00Z
2
value 0.01018
scoring_system epss
scoring_elements 0.77194
published_at 2026-04-12T12:55:00Z
3
value 0.01018
scoring_system epss
scoring_elements 0.77215
published_at 2026-04-11T12:55:00Z
4
value 0.01018
scoring_system epss
scoring_elements 0.77188
published_at 2026-04-09T12:55:00Z
5
value 0.01018
scoring_system epss
scoring_elements 0.77165
published_at 2026-04-04T12:55:00Z
6
value 0.01018
scoring_system epss
scoring_elements 0.77179
published_at 2026-04-08T12:55:00Z
7
value 0.01018
scoring_system epss
scoring_elements 0.77135
published_at 2026-04-02T12:55:00Z
8
value 0.01018
scoring_system epss
scoring_elements 0.77224
published_at 2026-04-21T12:55:00Z
9
value 0.01018
scoring_system epss
scoring_elements 0.77232
published_at 2026-04-18T12:55:00Z
10
value 0.01018
scoring_system epss
scoring_elements 0.77231
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-20785
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-20785
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-20785
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7RV6BLIATIJE74SQ6NG5ZC4JK5MMDQ2R/
reference_id 7RV6BLIATIJE74SQ6NG5ZC4JK5MMDQ2R
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-06T16:01:30Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7RV6BLIATIJE74SQ6NG5ZC4JK5MMDQ2R/
4
reference_url https://security.archlinux.org/AVG-2722
reference_id AVG-2722
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2722
5
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BX5ZXNHP4NFYQ5BFSKY3WT7NTBZUYG7L/
reference_id BX5ZXNHP4NFYQ5BFSKY3WT7NTBZUYG7L
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-06T16:01:30Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BX5ZXNHP4NFYQ5BFSKY3WT7NTBZUYG7L/
6
reference_url https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-html-XAuOK8mR
reference_id cisco-sa-clamav-html-XAuOK8mR
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-06T16:01:30Z/
url https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-html-XAuOK8mR
7
reference_url https://security.gentoo.org/glsa/202310-01
reference_id GLSA-202310-01
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-06T16:01:30Z/
url https://security.gentoo.org/glsa/202310-01
8
reference_url https://lists.debian.org/debian-lts-announce/2022/06/msg00004.html
reference_id msg00004.html
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-06T16:01:30Z/
url https://lists.debian.org/debian-lts-announce/2022/06/msg00004.html
9
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N4NNBIJVG6Z4PDIKUZXTYXICYUAYAZ56/
reference_id N4NNBIJVG6Z4PDIKUZXTYXICYUAYAZ56
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-06T16:01:30Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N4NNBIJVG6Z4PDIKUZXTYXICYUAYAZ56/
10
reference_url https://usn.ubuntu.com/5423-1/
reference_id USN-5423-1
reference_type
scores
url https://usn.ubuntu.com/5423-1/
11
reference_url https://usn.ubuntu.com/5423-2/
reference_id USN-5423-2
reference_type
scores
url https://usn.ubuntu.com/5423-2/
fixed_packages
0
url pkg:deb/debian/clamav@0.103.10%2Bdfsg-0%2Bdeb11u1
purl pkg:deb/debian/clamav@0.103.10%2Bdfsg-0%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5kba-63mx-hya7
1
vulnerability VCID-63vt-1nc8-6kfc
2
vulnerability VCID-ggz7-h35v-p7ep
3
vulnerability VCID-vdhk-r67a-s3fr
4
vulnerability VCID-wjvc-p75d-p3a9
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@0.103.10%252Bdfsg-0%252Bdeb11u1
aliases CVE-2022-20785
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dn26-zfsc-ryec
5
url VCID-fp31-7krz-abbs
vulnerability_id VCID-fp31-7krz-abbs
summary Multiple vulnerabilities have been discovered in ClamAV, the worst of which could result in remote code execution.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-20770
reference_id
reference_type
scores
0
value 0.00861
scoring_system epss
scoring_elements 0.75044
published_at 2026-04-13T12:55:00Z
1
value 0.00861
scoring_system epss
scoring_elements 0.75055
published_at 2026-04-12T12:55:00Z
2
value 0.00861
scoring_system epss
scoring_elements 0.75076
published_at 2026-04-11T12:55:00Z
3
value 0.00861
scoring_system epss
scoring_elements 0.75079
published_at 2026-04-21T12:55:00Z
4
value 0.00861
scoring_system epss
scoring_elements 0.75089
published_at 2026-04-18T12:55:00Z
5
value 0.00861
scoring_system epss
scoring_elements 0.75081
published_at 2026-04-16T12:55:00Z
6
value 0.00885
scoring_system epss
scoring_elements 0.75384
published_at 2026-04-07T12:55:00Z
7
value 0.00885
scoring_system epss
scoring_elements 0.75372
published_at 2026-04-02T12:55:00Z
8
value 0.00885
scoring_system epss
scoring_elements 0.75405
published_at 2026-04-04T12:55:00Z
9
value 0.00885
scoring_system epss
scoring_elements 0.75436
published_at 2026-04-09T12:55:00Z
10
value 0.00885
scoring_system epss
scoring_elements 0.75427
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-20770
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-20770
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-20770
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7RV6BLIATIJE74SQ6NG5ZC4JK5MMDQ2R/
reference_id 7RV6BLIATIJE74SQ6NG5ZC4JK5MMDQ2R
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-06T16:01:32Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7RV6BLIATIJE74SQ6NG5ZC4JK5MMDQ2R/
4
reference_url https://security.archlinux.org/AVG-2722
reference_id AVG-2722
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2722
5
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BX5ZXNHP4NFYQ5BFSKY3WT7NTBZUYG7L/
reference_id BX5ZXNHP4NFYQ5BFSKY3WT7NTBZUYG7L
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-06T16:01:32Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BX5ZXNHP4NFYQ5BFSKY3WT7NTBZUYG7L/
6
reference_url https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-dos-prVGcHLd
reference_id cisco-sa-clamav-dos-prVGcHLd
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-06T16:01:32Z/
url https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-dos-prVGcHLd
7
reference_url https://security.gentoo.org/glsa/202310-01
reference_id GLSA-202310-01
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-06T16:01:32Z/
url https://security.gentoo.org/glsa/202310-01
8
reference_url https://lists.debian.org/debian-lts-announce/2022/06/msg00004.html
reference_id msg00004.html
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-06T16:01:32Z/
url https://lists.debian.org/debian-lts-announce/2022/06/msg00004.html
9
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N4NNBIJVG6Z4PDIKUZXTYXICYUAYAZ56/
reference_id N4NNBIJVG6Z4PDIKUZXTYXICYUAYAZ56
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-06T16:01:32Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N4NNBIJVG6Z4PDIKUZXTYXICYUAYAZ56/
10
reference_url https://usn.ubuntu.com/5423-1/
reference_id USN-5423-1
reference_type
scores
url https://usn.ubuntu.com/5423-1/
11
reference_url https://usn.ubuntu.com/5423-2/
reference_id USN-5423-2
reference_type
scores
url https://usn.ubuntu.com/5423-2/
fixed_packages
0
url pkg:deb/debian/clamav@0.103.10%2Bdfsg-0%2Bdeb11u1
purl pkg:deb/debian/clamav@0.103.10%2Bdfsg-0%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5kba-63mx-hya7
1
vulnerability VCID-63vt-1nc8-6kfc
2
vulnerability VCID-ggz7-h35v-p7ep
3
vulnerability VCID-vdhk-r67a-s3fr
4
vulnerability VCID-wjvc-p75d-p3a9
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@0.103.10%252Bdfsg-0%252Bdeb11u1
aliases CVE-2022-20770
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fp31-7krz-abbs
6
url VCID-ggz7-h35v-p7ep
vulnerability_id VCID-ggz7-h35v-p7ep
summary Multiple vulnerabilities have been discovered in ClamAV, the worst of which could lead to arbitrary code execution.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-20505
reference_id
reference_type
scores
0
value 0.00803
scoring_system epss
scoring_elements 0.74059
published_at 2026-04-07T12:55:00Z
1
value 0.00803
scoring_system epss
scoring_elements 0.74107
published_at 2026-04-09T12:55:00Z
2
value 0.00803
scoring_system epss
scoring_elements 0.74092
published_at 2026-04-08T12:55:00Z
3
value 0.00803
scoring_system epss
scoring_elements 0.74062
published_at 2026-04-02T12:55:00Z
4
value 0.00803
scoring_system epss
scoring_elements 0.74088
published_at 2026-04-04T12:55:00Z
5
value 0.0089
scoring_system epss
scoring_elements 0.75558
published_at 2026-04-21T12:55:00Z
6
value 0.0089
scoring_system epss
scoring_elements 0.75523
published_at 2026-04-13T12:55:00Z
7
value 0.0089
scoring_system epss
scoring_elements 0.75566
published_at 2026-04-16T12:55:00Z
8
value 0.0089
scoring_system epss
scoring_elements 0.75571
published_at 2026-04-18T12:55:00Z
9
value 0.0089
scoring_system epss
scoring_elements 0.75554
published_at 2026-04-11T12:55:00Z
10
value 0.0089
scoring_system epss
scoring_elements 0.75532
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-20505
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-20505
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-20505
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1080962
reference_id 1080962
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1080962
4
reference_url https://blog.clamav.net/2024/09/clamav-141-132-107-and-010312-security.html
reference_id clamav-141-132-107-and-010312-security.html
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-05T13:35:13Z/
url https://blog.clamav.net/2024/09/clamav-141-132-107-and-010312-security.html
5
reference_url https://security.gentoo.org/glsa/202507-03
reference_id GLSA-202507-03
reference_type
scores
url https://security.gentoo.org/glsa/202507-03
6
reference_url https://usn.ubuntu.com/7011-1/
reference_id USN-7011-1
reference_type
scores
url https://usn.ubuntu.com/7011-1/
7
reference_url https://usn.ubuntu.com/7011-2/
reference_id USN-7011-2
reference_type
scores
url https://usn.ubuntu.com/7011-2/
fixed_packages
0
url pkg:deb/debian/clamav@1.4.3%2Bdfsg-1~deb12u2
purl pkg:deb/debian/clamav@1.4.3%2Bdfsg-1~deb12u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5kba-63mx-hya7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@1.4.3%252Bdfsg-1~deb12u2
aliases CVE-2024-20505
risk_score 1.9
exploitability 0.5
weighted_severity 3.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ggz7-h35v-p7ep
7
url VCID-kurn-1uay-qqap
vulnerability_id VCID-kurn-1uay-qqap
summary Multiple vulnerabilities have been discovered in ClamAV, the worst of which could result in remote code execution.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-20792
reference_id
reference_type
scores
0
value 0.00139
scoring_system epss
scoring_elements 0.34012
published_at 2026-04-21T12:55:00Z
1
value 0.00139
scoring_system epss
scoring_elements 0.34092
published_at 2026-04-09T12:55:00Z
2
value 0.00139
scoring_system epss
scoring_elements 0.3409
published_at 2026-04-11T12:55:00Z
3
value 0.00139
scoring_system epss
scoring_elements 0.34048
published_at 2026-04-12T12:55:00Z
4
value 0.00139
scoring_system epss
scoring_elements 0.34024
published_at 2026-04-13T12:55:00Z
5
value 0.00139
scoring_system epss
scoring_elements 0.34059
published_at 2026-04-16T12:55:00Z
6
value 0.00139
scoring_system epss
scoring_elements 0.34047
published_at 2026-04-18T12:55:00Z
7
value 0.00139
scoring_system epss
scoring_elements 0.34126
published_at 2026-04-02T12:55:00Z
8
value 0.00139
scoring_system epss
scoring_elements 0.34157
published_at 2026-04-04T12:55:00Z
9
value 0.00139
scoring_system epss
scoring_elements 0.34018
published_at 2026-04-07T12:55:00Z
10
value 0.00139
scoring_system epss
scoring_elements 0.34061
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-20792
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-20792
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-20792
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://security.archlinux.org/AVG-2722
reference_id AVG-2722
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2722
4
reference_url https://blog.clamav.net/2022/05/clamav-01050-01043-01036-released.html
reference_id clamav-01050-01043-01036-released.html
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-01T18:42:21Z/
url https://blog.clamav.net/2022/05/clamav-01050-01043-01036-released.html
5
reference_url https://security.gentoo.org/glsa/202310-01
reference_id GLSA-202310-01
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-01T18:42:21Z/
url https://security.gentoo.org/glsa/202310-01
6
reference_url https://usn.ubuntu.com/5423-1/
reference_id USN-5423-1
reference_type
scores
url https://usn.ubuntu.com/5423-1/
7
reference_url https://usn.ubuntu.com/5423-2/
reference_id USN-5423-2
reference_type
scores
url https://usn.ubuntu.com/5423-2/
fixed_packages
0
url pkg:deb/debian/clamav@0.103.10%2Bdfsg-0%2Bdeb11u1
purl pkg:deb/debian/clamav@0.103.10%2Bdfsg-0%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5kba-63mx-hya7
1
vulnerability VCID-63vt-1nc8-6kfc
2
vulnerability VCID-ggz7-h35v-p7ep
3
vulnerability VCID-vdhk-r67a-s3fr
4
vulnerability VCID-wjvc-p75d-p3a9
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@0.103.10%252Bdfsg-0%252Bdeb11u1
aliases CVE-2022-20792
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kurn-1uay-qqap
8
url VCID-mdfk-5ked-t3bu
vulnerability_id VCID-mdfk-5ked-t3bu
summary Multiple vulnerabilities have been discovered in ClamAV, the worst of which could lead to arbitrary code execution.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-20197
reference_id
reference_type
scores
0
value 0.00438
scoring_system epss
scoring_elements 0.63167
published_at 2026-04-18T12:55:00Z
1
value 0.00438
scoring_system epss
scoring_elements 0.63082
published_at 2026-04-02T12:55:00Z
2
value 0.00438
scoring_system epss
scoring_elements 0.63111
published_at 2026-04-04T12:55:00Z
3
value 0.00438
scoring_system epss
scoring_elements 0.63076
published_at 2026-04-07T12:55:00Z
4
value 0.00438
scoring_system epss
scoring_elements 0.63128
published_at 2026-04-08T12:55:00Z
5
value 0.00438
scoring_system epss
scoring_elements 0.63146
published_at 2026-04-09T12:55:00Z
6
value 0.00438
scoring_system epss
scoring_elements 0.63163
published_at 2026-04-11T12:55:00Z
7
value 0.00438
scoring_system epss
scoring_elements 0.63148
published_at 2026-04-21T12:55:00Z
8
value 0.00438
scoring_system epss
scoring_elements 0.63125
published_at 2026-04-13T12:55:00Z
9
value 0.00438
scoring_system epss
scoring_elements 0.6316
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-20197
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-20197
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-20197
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1050057
reference_id 1050057
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1050057
4
reference_url https://security.gentoo.org/glsa/202507-03
reference_id GLSA-202507-03
reference_type
scores
url https://security.gentoo.org/glsa/202507-03
5
reference_url https://usn.ubuntu.com/6303-1/
reference_id USN-6303-1
reference_type
scores
url https://usn.ubuntu.com/6303-1/
6
reference_url https://usn.ubuntu.com/6303-2/
reference_id USN-6303-2
reference_type
scores
url https://usn.ubuntu.com/6303-2/
fixed_packages
0
url pkg:deb/debian/clamav@0.103.10%2Bdfsg-0%2Bdeb11u1
purl pkg:deb/debian/clamav@0.103.10%2Bdfsg-0%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5kba-63mx-hya7
1
vulnerability VCID-63vt-1nc8-6kfc
2
vulnerability VCID-ggz7-h35v-p7ep
3
vulnerability VCID-vdhk-r67a-s3fr
4
vulnerability VCID-wjvc-p75d-p3a9
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@0.103.10%252Bdfsg-0%252Bdeb11u1
aliases CVE-2023-20197
risk_score 1.9
exploitability 0.5
weighted_severity 3.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mdfk-5ked-t3bu
9
url VCID-tzph-y73s-6qb9
vulnerability_id VCID-tzph-y73s-6qb9
summary Multiple vulnerabilities have been discovered in ClamAV, the worst of which could result in remote code execution.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-20771
reference_id
reference_type
scores
0
value 0.00983
scoring_system epss
scoring_elements 0.76797
published_at 2026-04-13T12:55:00Z
1
value 0.00983
scoring_system epss
scoring_elements 0.76804
published_at 2026-04-12T12:55:00Z
2
value 0.00983
scoring_system epss
scoring_elements 0.76824
published_at 2026-04-11T12:55:00Z
3
value 0.00983
scoring_system epss
scoring_elements 0.76836
published_at 2026-04-21T12:55:00Z
4
value 0.00983
scoring_system epss
scoring_elements 0.76845
published_at 2026-04-18T12:55:00Z
5
value 0.00983
scoring_system epss
scoring_elements 0.76839
published_at 2026-04-16T12:55:00Z
6
value 0.0101
scoring_system epss
scoring_elements 0.77057
published_at 2026-04-07T12:55:00Z
7
value 0.0101
scoring_system epss
scoring_elements 0.77047
published_at 2026-04-02T12:55:00Z
8
value 0.0101
scoring_system epss
scoring_elements 0.77089
published_at 2026-04-08T12:55:00Z
9
value 0.0101
scoring_system epss
scoring_elements 0.77076
published_at 2026-04-04T12:55:00Z
10
value 0.0101
scoring_system epss
scoring_elements 0.77099
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-20771
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-20771
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-20771
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7RV6BLIATIJE74SQ6NG5ZC4JK5MMDQ2R/
reference_id 7RV6BLIATIJE74SQ6NG5ZC4JK5MMDQ2R
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-06T16:01:31Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7RV6BLIATIJE74SQ6NG5ZC4JK5MMDQ2R/
4
reference_url https://security.archlinux.org/AVG-2722
reference_id AVG-2722
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2722
5
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BX5ZXNHP4NFYQ5BFSKY3WT7NTBZUYG7L/
reference_id BX5ZXNHP4NFYQ5BFSKY3WT7NTBZUYG7L
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-06T16:01:31Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BX5ZXNHP4NFYQ5BFSKY3WT7NTBZUYG7L/
6
reference_url https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-dos-ZAZBwRVG
reference_id cisco-sa-clamav-dos-ZAZBwRVG
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-06T16:01:31Z/
url https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-dos-ZAZBwRVG
7
reference_url https://security.gentoo.org/glsa/202310-01
reference_id GLSA-202310-01
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-06T16:01:31Z/
url https://security.gentoo.org/glsa/202310-01
8
reference_url https://lists.debian.org/debian-lts-announce/2022/06/msg00004.html
reference_id msg00004.html
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-06T16:01:31Z/
url https://lists.debian.org/debian-lts-announce/2022/06/msg00004.html
9
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N4NNBIJVG6Z4PDIKUZXTYXICYUAYAZ56/
reference_id N4NNBIJVG6Z4PDIKUZXTYXICYUAYAZ56
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-06T16:01:31Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N4NNBIJVG6Z4PDIKUZXTYXICYUAYAZ56/
10
reference_url https://usn.ubuntu.com/5423-1/
reference_id USN-5423-1
reference_type
scores
url https://usn.ubuntu.com/5423-1/
11
reference_url https://usn.ubuntu.com/5423-2/
reference_id USN-5423-2
reference_type
scores
url https://usn.ubuntu.com/5423-2/
fixed_packages
0
url pkg:deb/debian/clamav@0.103.10%2Bdfsg-0%2Bdeb11u1
purl pkg:deb/debian/clamav@0.103.10%2Bdfsg-0%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5kba-63mx-hya7
1
vulnerability VCID-63vt-1nc8-6kfc
2
vulnerability VCID-ggz7-h35v-p7ep
3
vulnerability VCID-vdhk-r67a-s3fr
4
vulnerability VCID-wjvc-p75d-p3a9
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@0.103.10%252Bdfsg-0%252Bdeb11u1
aliases CVE-2022-20771
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tzph-y73s-6qb9
10
url VCID-vdhk-r67a-s3fr
vulnerability_id VCID-vdhk-r67a-s3fr
summary A vulnerability in the Object Linking and Embedding 2 (OLE2) decryption routine of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to an integer underflow in a bounds check that allows for a heap buffer overflow read. An attacker could exploit this vulnerability by submitting a crafted file containing OLE2 content to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to terminate the ClamAV scanning process, resulting in a DoS condition on the affected software. For a description of this vulnerability, see the . Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-20128
reference_id
reference_type
scores
0
value 0.01581
scoring_system epss
scoring_elements 0.8162
published_at 2026-04-21T12:55:00Z
1
value 0.01581
scoring_system epss
scoring_elements 0.81617
published_at 2026-04-18T12:55:00Z
2
value 0.01581
scoring_system epss
scoring_elements 0.81585
published_at 2026-04-12T12:55:00Z
3
value 0.01581
scoring_system epss
scoring_elements 0.81616
published_at 2026-04-16T12:55:00Z
4
value 0.01581
scoring_system epss
scoring_elements 0.81598
published_at 2026-04-11T12:55:00Z
5
value 0.01581
scoring_system epss
scoring_elements 0.81578
published_at 2026-04-13T12:55:00Z
6
value 0.01625
scoring_system epss
scoring_elements 0.81845
published_at 2026-04-08T12:55:00Z
7
value 0.01625
scoring_system epss
scoring_elements 0.81799
published_at 2026-04-02T12:55:00Z
8
value 0.01625
scoring_system epss
scoring_elements 0.81822
published_at 2026-04-04T12:55:00Z
9
value 0.01625
scoring_system epss
scoring_elements 0.81819
published_at 2026-04-07T12:55:00Z
10
value 0.01625
scoring_system epss
scoring_elements 0.81852
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-20128
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-20128
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-20128
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1093880
reference_id 1093880
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1093880
4
reference_url https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-ole2-H549rphA
reference_id cisco-sa-clamav-ole2-H549rphA
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-22T16:54:39Z/
url https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-ole2-H549rphA
5
reference_url https://blog.clamav.net/2025/01/clamav-142-and-108-security-patch.html
reference_id clamav-142-and-108-security-patch.html
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-22T16:54:39Z/
url https://blog.clamav.net/2025/01/clamav-142-and-108-security-patch.html
6
reference_url https://usn.ubuntu.com/7229-1/
reference_id USN-7229-1
reference_type
scores
url https://usn.ubuntu.com/7229-1/
fixed_packages
0
url pkg:deb/debian/clamav@1.4.3%2Bdfsg-1~deb12u2
purl pkg:deb/debian/clamav@1.4.3%2Bdfsg-1~deb12u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5kba-63mx-hya7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@1.4.3%252Bdfsg-1~deb12u2
aliases CVE-2025-20128
risk_score 1.6
exploitability 0.5
weighted_severity 3.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vdhk-r67a-s3fr
11
url VCID-wjvc-p75d-p3a9
vulnerability_id VCID-wjvc-p75d-p3a9
summary Multiple vulnerabilities have been discovered in ClamAV, the worst of which could lead to arbitrary code execution.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-20506
reference_id
reference_type
scores
0
value 0.00036
scoring_system epss
scoring_elements 0.10881
published_at 2026-04-21T12:55:00Z
1
value 0.00036
scoring_system epss
scoring_elements 0.10883
published_at 2026-04-13T12:55:00Z
2
value 0.00036
scoring_system epss
scoring_elements 0.10742
published_at 2026-04-16T12:55:00Z
3
value 0.00036
scoring_system epss
scoring_elements 0.10755
published_at 2026-04-18T12:55:00Z
4
value 0.00036
scoring_system epss
scoring_elements 0.10918
published_at 2026-04-02T12:55:00Z
5
value 0.00036
scoring_system epss
scoring_elements 0.10982
published_at 2026-04-04T12:55:00Z
6
value 0.00036
scoring_system epss
scoring_elements 0.10808
published_at 2026-04-07T12:55:00Z
7
value 0.00036
scoring_system epss
scoring_elements 0.10884
published_at 2026-04-08T12:55:00Z
8
value 0.00036
scoring_system epss
scoring_elements 0.10937
published_at 2026-04-09T12:55:00Z
9
value 0.00036
scoring_system epss
scoring_elements 0.10938
published_at 2026-04-11T12:55:00Z
10
value 0.00036
scoring_system epss
scoring_elements 0.10905
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-20506
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-20506
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-20506
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1080962
reference_id 1080962
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1080962
4
reference_url https://blog.clamav.net/2024/09/clamav-141-132-107-and-010312-security.html
reference_id clamav-141-132-107-and-010312-security.html
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-05T13:34:43Z/
url https://blog.clamav.net/2024/09/clamav-141-132-107-and-010312-security.html
5
reference_url https://security.gentoo.org/glsa/202507-03
reference_id GLSA-202507-03
reference_type
scores
url https://security.gentoo.org/glsa/202507-03
6
reference_url https://usn.ubuntu.com/7011-1/
reference_id USN-7011-1
reference_type
scores
url https://usn.ubuntu.com/7011-1/
7
reference_url https://usn.ubuntu.com/7011-2/
reference_id USN-7011-2
reference_type
scores
url https://usn.ubuntu.com/7011-2/
fixed_packages
0
url pkg:deb/debian/clamav@1.4.3%2Bdfsg-1~deb12u2
purl pkg:deb/debian/clamav@1.4.3%2Bdfsg-1~deb12u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5kba-63mx-hya7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@1.4.3%252Bdfsg-1~deb12u2
aliases CVE-2024-20506
risk_score 1.6
exploitability 0.5
weighted_severity 3.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wjvc-p75d-p3a9
Fixing_vulnerabilities
0
url VCID-cc9p-w184-zfej
vulnerability_id VCID-cc9p-w184-zfej
summary 
Multiple vulnerabilities have been found in ClamAV, the worst of
    which could result in a Denial of Service condition.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-3327
reference_id
reference_type
scores
0
value 0.07618
scoring_system epss
scoring_elements 0.91822
published_at 2026-04-01T12:55:00Z
1
value 0.07618
scoring_system epss
scoring_elements 0.9183
published_at 2026-04-02T12:55:00Z
2
value 0.07618
scoring_system epss
scoring_elements 0.91836
published_at 2026-04-04T12:55:00Z
3
value 0.07618
scoring_system epss
scoring_elements 0.91845
published_at 2026-04-07T12:55:00Z
4
value 0.07618
scoring_system epss
scoring_elements 0.91857
published_at 2026-04-08T12:55:00Z
5
value 0.07618
scoring_system epss
scoring_elements 0.91863
published_at 2026-04-09T12:55:00Z
6
value 0.07618
scoring_system epss
scoring_elements 0.91866
published_at 2026-04-11T12:55:00Z
7
value 0.07618
scoring_system epss
scoring_elements 0.91867
published_at 2026-04-12T12:55:00Z
8
value 0.07618
scoring_system epss
scoring_elements 0.91862
published_at 2026-04-13T12:55:00Z
9
value 0.07618
scoring_system epss
scoring_elements 0.91882
published_at 2026-04-16T12:55:00Z
10
value 0.07618
scoring_system epss
scoring_elements 0.91878
published_at 2026-04-18T12:55:00Z
11
value 0.07618
scoring_system epss
scoring_elements 0.91876
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-3327
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3327
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3327
2
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3BMTC7I5LGY4FCIZLHPNC4WWC6VNLFER/
reference_id 3BMTC7I5LGY4FCIZLHPNC4WWC6VNLFER
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-15T16:21:23Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3BMTC7I5LGY4FCIZLHPNC4WWC6VNLFER/
3
reference_url https://blog.clamav.net/2020/05/clamav-01023-security-patch-released.html
reference_id clamav-01023-security-patch-released.html
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-15T16:21:23Z/
url https://blog.clamav.net/2020/05/clamav-01023-security-patch-released.html
4
reference_url https://security.gentoo.org/glsa/202007-23
reference_id GLSA-202007-23
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-15T16:21:23Z/
url https://security.gentoo.org/glsa/202007-23
5
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IJ67VH37NCG25PICGWFWZHSVG7PBT7MC/
reference_id IJ67VH37NCG25PICGWFWZHSVG7PBT7MC
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-15T16:21:23Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IJ67VH37NCG25PICGWFWZHSVG7PBT7MC/
6
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5YWYT27SBTV4RZSGFHIQUI4LQVFASWS/
reference_id L5YWYT27SBTV4RZSGFHIQUI4LQVFASWS
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-15T16:21:23Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5YWYT27SBTV4RZSGFHIQUI4LQVFASWS/
7
reference_url https://lists.debian.org/debian-lts-announce/2020/08/msg00010.html
reference_id msg00010.html
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-15T16:21:23Z/
url https://lists.debian.org/debian-lts-announce/2020/08/msg00010.html
8
reference_url https://lists.debian.org/debian-lts-announce/2020/05/msg00018.html
reference_id msg00018.html
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-15T16:21:23Z/
url https://lists.debian.org/debian-lts-announce/2020/05/msg00018.html
9
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QM7EXJHDEZJLWM2NKH6TCDXOBP5NNYIN/
reference_id QM7EXJHDEZJLWM2NKH6TCDXOBP5NNYIN
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-15T16:21:23Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QM7EXJHDEZJLWM2NKH6TCDXOBP5NNYIN/
10
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ROBJOGJOT44MVDX7RQEACYHQN4LYW5RK/
reference_id ROBJOGJOT44MVDX7RQEACYHQN4LYW5RK
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-15T16:21:23Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ROBJOGJOT44MVDX7RQEACYHQN4LYW5RK/
11
reference_url https://usn.ubuntu.com/4370-1/
reference_id USN-4370-1
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-15T16:21:23Z/
url https://usn.ubuntu.com/4370-1/
12
reference_url https://usn.ubuntu.com/4370-2/
reference_id USN-4370-2
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-15T16:21:23Z/
url https://usn.ubuntu.com/4370-2/
13
reference_url https://usn.ubuntu.com/4435-1/
reference_id USN-4435-1
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-15T16:21:23Z/
url https://usn.ubuntu.com/4435-1/
14
reference_url https://usn.ubuntu.com/4435-2/
reference_id USN-4435-2
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-15T16:21:23Z/
url https://usn.ubuntu.com/4435-2/
fixed_packages
0
url pkg:deb/debian/clamav@0.103.6%2Bdfsg-0%2Bdeb10u1
purl pkg:deb/debian/clamav@0.103.6%2Bdfsg-0%2Bdeb10u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2aju-u36p-gug9
1
vulnerability VCID-4z4r-2w8m-r7dz
2
vulnerability VCID-63vt-1nc8-6kfc
3
vulnerability VCID-d3u3-epeb-guh9
4
vulnerability VCID-dn26-zfsc-ryec
5
vulnerability VCID-fp31-7krz-abbs
6
vulnerability VCID-ggz7-h35v-p7ep
7
vulnerability VCID-kurn-1uay-qqap
8
vulnerability VCID-mdfk-5ked-t3bu
9
vulnerability VCID-tzph-y73s-6qb9
10
vulnerability VCID-vdhk-r67a-s3fr
11
vulnerability VCID-wjvc-p75d-p3a9
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@0.103.6%252Bdfsg-0%252Bdeb10u1
aliases CVE-2020-3327
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-cc9p-w184-zfej
1
url VCID-cysq-fdzg-13dd
vulnerability_id VCID-cysq-fdzg-13dd
summary ClamAV versions prior to 0.103.0-rc contain a vulnerability in function name processing through the ClamBC bytecode interpreter that allows attackers to manipulate bytecode function names. Attackers can exploit the weak input validation in function name encoding to potentially execute malicious bytecode or cause unexpected behavior in the ClamAV engine.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-37167
reference_id
reference_type
scores
0
value 6e-05
scoring_system epss
scoring_elements 0.00411
published_at 2026-04-07T12:55:00Z
1
value 6e-05
scoring_system epss
scoring_elements 0.00418
published_at 2026-04-04T12:55:00Z
2
value 6e-05
scoring_system epss
scoring_elements 0.00415
published_at 2026-04-01T12:55:00Z
3
value 6e-05
scoring_system epss
scoring_elements 0.00401
published_at 2026-04-18T12:55:00Z
4
value 6e-05
scoring_system epss
scoring_elements 0.00397
published_at 2026-04-16T12:55:00Z
5
value 6e-05
scoring_system epss
scoring_elements 0.00402
published_at 2026-04-13T12:55:00Z
6
value 6e-05
scoring_system epss
scoring_elements 0.00404
published_at 2026-04-12T12:55:00Z
7
value 6e-05
scoring_system epss
scoring_elements 0.00408
published_at 2026-04-09T12:55:00Z
8
value 6e-05
scoring_system epss
scoring_elements 0.00407
published_at 2026-04-11T12:55:00Z
9
value 7e-05
scoring_system epss
scoring_elements 0.0048
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-37167
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-37167
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-37167
2
reference_url https://www.exploit-db.com/exploits/47687
reference_id 47687
reference_type
scores
0
value 8.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-02-13T17:08:35Z/
url https://www.exploit-db.com/exploits/47687
3
reference_url https://github.com/Cisco-Talos/clamav/commit/cd2f2975b93277de7f74464d48adb378375a305f
reference_id cd2f2975b93277de7f74464d48adb378375a305f
reference_type
scores
0
value 8.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-02-13T17:08:35Z/
url https://github.com/Cisco-Talos/clamav/commit/cd2f2975b93277de7f74464d48adb378375a305f
4
reference_url https://www.vulncheck.com/advisories/clamav-clambc-clambc-executable-regular-expression-error
reference_id clamav-clambc-clambc-executable-regular-expression-error
reference_type
scores
0
value 8.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-02-13T17:08:35Z/
url https://www.vulncheck.com/advisories/clamav-clambc-clambc-executable-regular-expression-error
5
reference_url https://www.clamav.net/
reference_id www.clamav.net
reference_type
scores
0
value 8.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-02-13T17:08:35Z/
url https://www.clamav.net/
fixed_packages
0
url pkg:deb/debian/clamav@0.103.6%2Bdfsg-0%2Bdeb10u1
purl pkg:deb/debian/clamav@0.103.6%2Bdfsg-0%2Bdeb10u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2aju-u36p-gug9
1
vulnerability VCID-4z4r-2w8m-r7dz
2
vulnerability VCID-63vt-1nc8-6kfc
3
vulnerability VCID-d3u3-epeb-guh9
4
vulnerability VCID-dn26-zfsc-ryec
5
vulnerability VCID-fp31-7krz-abbs
6
vulnerability VCID-ggz7-h35v-p7ep
7
vulnerability VCID-kurn-1uay-qqap
8
vulnerability VCID-mdfk-5ked-t3bu
9
vulnerability VCID-tzph-y73s-6qb9
10
vulnerability VCID-vdhk-r67a-s3fr
11
vulnerability VCID-wjvc-p75d-p3a9
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@0.103.6%252Bdfsg-0%252Bdeb10u1
aliases CVE-2020-37167
risk_score 3.9
exploitability 0.5
weighted_severity 7.7
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-cysq-fdzg-13dd
2
url VCID-egd5-p68y-wfdy
vulnerability_id VCID-egd5-p68y-wfdy
summary A vulnerability in the PDF parsing module in Clam AntiVirus (ClamAV) Software versions 0.103.0 and 0.103.1 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improper buffer size tracking that may result in a heap buffer over-read. An attacker could exploit this vulnerability by sending a crafted PDF file to an affected device. An exploit could allow the attacker to cause the ClamAV scanning process to crash, resulting in a denial of service condition.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-1404
reference_id
reference_type
scores
0
value 0.00448
scoring_system epss
scoring_elements 0.6359
published_at 2026-04-21T12:55:00Z
1
value 0.00448
scoring_system epss
scoring_elements 0.63611
published_at 2026-04-11T12:55:00Z
2
value 0.00448
scoring_system epss
scoring_elements 0.63598
published_at 2026-04-16T12:55:00Z
3
value 0.00448
scoring_system epss
scoring_elements 0.63607
published_at 2026-04-18T12:55:00Z
4
value 0.00448
scoring_system epss
scoring_elements 0.63475
published_at 2026-04-01T12:55:00Z
5
value 0.00448
scoring_system epss
scoring_elements 0.63534
published_at 2026-04-02T12:55:00Z
6
value 0.00448
scoring_system epss
scoring_elements 0.63562
published_at 2026-04-13T12:55:00Z
7
value 0.00448
scoring_system epss
scoring_elements 0.63527
published_at 2026-04-07T12:55:00Z
8
value 0.00448
scoring_system epss
scoring_elements 0.63579
published_at 2026-04-08T12:55:00Z
9
value 0.00448
scoring_system epss
scoring_elements 0.63596
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-1404
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1404
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1404
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986622
reference_id 986622
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986622
4
reference_url https://security.archlinux.org/AVG-1787
reference_id AVG-1787
reference_type
scores
0
value Low
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1787
5
reference_url https://blog.clamav.net/2021/04/clamav-01032-security-patch-release.html
reference_id clamav-01032-security-patch-release.html
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-08T20:02:31Z/
url https://blog.clamav.net/2021/04/clamav-01032-security-patch-release.html
6
reference_url https://usn.ubuntu.com/4918-1/
reference_id USN-4918-1
reference_type
scores
url https://usn.ubuntu.com/4918-1/
7
reference_url https://usn.ubuntu.com/4918-2/
reference_id USN-4918-2
reference_type
scores
url https://usn.ubuntu.com/4918-2/
fixed_packages
0
url pkg:deb/debian/clamav@0.103.6%2Bdfsg-0%2Bdeb10u1
purl pkg:deb/debian/clamav@0.103.6%2Bdfsg-0%2Bdeb10u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2aju-u36p-gug9
1
vulnerability VCID-4z4r-2w8m-r7dz
2
vulnerability VCID-63vt-1nc8-6kfc
3
vulnerability VCID-d3u3-epeb-guh9
4
vulnerability VCID-dn26-zfsc-ryec
5
vulnerability VCID-fp31-7krz-abbs
6
vulnerability VCID-ggz7-h35v-p7ep
7
vulnerability VCID-kurn-1uay-qqap
8
vulnerability VCID-mdfk-5ked-t3bu
9
vulnerability VCID-tzph-y73s-6qb9
10
vulnerability VCID-vdhk-r67a-s3fr
11
vulnerability VCID-wjvc-p75d-p3a9
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@0.103.6%252Bdfsg-0%252Bdeb10u1
aliases CVE-2021-1404
risk_score 1.9
exploitability 0.5
weighted_severity 3.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-egd5-p68y-wfdy
3
url VCID-mu6w-nub4-z3ef
vulnerability_id VCID-mu6w-nub4-z3ef
summary Multiple vulnerabilities have been discovered in ClamAV, the worst of which could result in remote code execution.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-20698
reference_id
reference_type
scores
0
value 0.00243
scoring_system epss
scoring_elements 0.47558
published_at 2026-04-21T12:55:00Z
1
value 0.00243
scoring_system epss
scoring_elements 0.47528
published_at 2026-04-02T12:55:00Z
2
value 0.00243
scoring_system epss
scoring_elements 0.47548
published_at 2026-04-12T12:55:00Z
3
value 0.00243
scoring_system epss
scoring_elements 0.47572
published_at 2026-04-11T12:55:00Z
4
value 0.00243
scoring_system epss
scoring_elements 0.47556
published_at 2026-04-13T12:55:00Z
5
value 0.00243
scoring_system epss
scoring_elements 0.47614
published_at 2026-04-16T12:55:00Z
6
value 0.00243
scoring_system epss
scoring_elements 0.47607
published_at 2026-04-18T12:55:00Z
7
value 0.00243
scoring_system epss
scoring_elements 0.47549
published_at 2026-04-04T12:55:00Z
8
value 0.00243
scoring_system epss
scoring_elements 0.47497
published_at 2026-04-07T12:55:00Z
9
value 0.00243
scoring_system epss
scoring_elements 0.47552
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-20698
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-20698
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-20698
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://blog.clamav.net/2022/01/clamav-01035-and-01042-security-patch.html
reference_id clamav-01035-and-01042-security-patch.html
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-06T16:01:57Z/
url https://blog.clamav.net/2022/01/clamav-01035-and-01042-security-patch.html
4
reference_url https://security.gentoo.org/glsa/202310-01
reference_id GLSA-202310-01
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-06T16:01:57Z/
url https://security.gentoo.org/glsa/202310-01
5
reference_url https://usn.ubuntu.com/5233-1/
reference_id USN-5233-1
reference_type
scores
url https://usn.ubuntu.com/5233-1/
6
reference_url https://usn.ubuntu.com/5233-2/
reference_id USN-5233-2
reference_type
scores
url https://usn.ubuntu.com/5233-2/
fixed_packages
0
url pkg:deb/debian/clamav@0.103.6%2Bdfsg-0%2Bdeb10u1
purl pkg:deb/debian/clamav@0.103.6%2Bdfsg-0%2Bdeb10u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2aju-u36p-gug9
1
vulnerability VCID-4z4r-2w8m-r7dz
2
vulnerability VCID-63vt-1nc8-6kfc
3
vulnerability VCID-d3u3-epeb-guh9
4
vulnerability VCID-dn26-zfsc-ryec
5
vulnerability VCID-fp31-7krz-abbs
6
vulnerability VCID-ggz7-h35v-p7ep
7
vulnerability VCID-kurn-1uay-qqap
8
vulnerability VCID-mdfk-5ked-t3bu
9
vulnerability VCID-tzph-y73s-6qb9
10
vulnerability VCID-vdhk-r67a-s3fr
11
vulnerability VCID-wjvc-p75d-p3a9
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@0.103.6%252Bdfsg-0%252Bdeb10u1
aliases CVE-2022-20698
risk_score 2.6
exploitability 0.5
weighted_severity 5.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mu6w-nub4-z3ef
4
url VCID-new8-u5x9-nkeb
vulnerability_id VCID-new8-u5x9-nkeb
summary 
A vulnerability in ClamAV could lead to a Denial of Service
    condition.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-1405
reference_id
reference_type
scores
0
value 0.01493
scoring_system epss
scoring_elements 0.81005
published_at 2026-04-01T12:55:00Z
1
value 0.01493
scoring_system epss
scoring_elements 0.81064
published_at 2026-04-08T12:55:00Z
2
value 0.01493
scoring_system epss
scoring_elements 0.81071
published_at 2026-04-09T12:55:00Z
3
value 0.01493
scoring_system epss
scoring_elements 0.81089
published_at 2026-04-11T12:55:00Z
4
value 0.01493
scoring_system epss
scoring_elements 0.81075
published_at 2026-04-12T12:55:00Z
5
value 0.01493
scoring_system epss
scoring_elements 0.81068
published_at 2026-04-13T12:55:00Z
6
value 0.01493
scoring_system epss
scoring_elements 0.81106
published_at 2026-04-16T12:55:00Z
7
value 0.01493
scoring_system epss
scoring_elements 0.81108
published_at 2026-04-18T12:55:00Z
8
value 0.01493
scoring_system epss
scoring_elements 0.81105
published_at 2026-04-21T12:55:00Z
9
value 0.01493
scoring_system epss
scoring_elements 0.81014
published_at 2026-04-02T12:55:00Z
10
value 0.01493
scoring_system epss
scoring_elements 0.81037
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-1405
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1405
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1405
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986622
reference_id 986622
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986622
4
reference_url https://security.archlinux.org/AVG-1787
reference_id AVG-1787
reference_type
scores
0
value Low
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1787
5
reference_url https://blog.clamav.net/2021/04/clamav-01032-security-patch-release.html
reference_id clamav-01032-security-patch-release.html
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-08T20:02:34Z/
url https://blog.clamav.net/2021/04/clamav-01032-security-patch-release.html
6
reference_url https://security.gentoo.org/glsa/202104-07
reference_id GLSA-202104-07
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-08T20:02:34Z/
url https://security.gentoo.org/glsa/202104-07
7
reference_url https://lists.debian.org/debian-lts-announce/2021/04/msg00012.html
reference_id msg00012.html
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-08T20:02:34Z/
url https://lists.debian.org/debian-lts-announce/2021/04/msg00012.html
8
reference_url https://usn.ubuntu.com/4918-1/
reference_id USN-4918-1
reference_type
scores
url https://usn.ubuntu.com/4918-1/
9
reference_url https://usn.ubuntu.com/4918-2/
reference_id USN-4918-2
reference_type
scores
url https://usn.ubuntu.com/4918-2/
fixed_packages
0
url pkg:deb/debian/clamav@0.103.6%2Bdfsg-0%2Bdeb10u1
purl pkg:deb/debian/clamav@0.103.6%2Bdfsg-0%2Bdeb10u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2aju-u36p-gug9
1
vulnerability VCID-4z4r-2w8m-r7dz
2
vulnerability VCID-63vt-1nc8-6kfc
3
vulnerability VCID-d3u3-epeb-guh9
4
vulnerability VCID-dn26-zfsc-ryec
5
vulnerability VCID-fp31-7krz-abbs
6
vulnerability VCID-ggz7-h35v-p7ep
7
vulnerability VCID-kurn-1uay-qqap
8
vulnerability VCID-mdfk-5ked-t3bu
9
vulnerability VCID-tzph-y73s-6qb9
10
vulnerability VCID-vdhk-r67a-s3fr
11
vulnerability VCID-wjvc-p75d-p3a9
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@0.103.6%252Bdfsg-0%252Bdeb10u1
aliases CVE-2021-1405
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-new8-u5x9-nkeb
5
url VCID-vbmy-urt6-myha
vulnerability_id VCID-vbmy-urt6-myha
summary A vulnerability in the PDF archive parsing module in Clam AntiVirus (ClamAV) Software versions 0.101 - 0.102.2 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a stack buffer overflow read. An attacker could exploit this vulnerability by sending a crafted PDF file to an affected device. An exploit could allow the attacker to cause the ClamAV scanning process crash, resulting in a denial of service condition.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-3341
reference_id
reference_type
scores
0
value 0.04089
scoring_system epss
scoring_elements 0.88522
published_at 2026-04-01T12:55:00Z
1
value 0.04089
scoring_system epss
scoring_elements 0.8853
published_at 2026-04-02T12:55:00Z
2
value 0.04089
scoring_system epss
scoring_elements 0.88547
published_at 2026-04-04T12:55:00Z
3
value 0.04089
scoring_system epss
scoring_elements 0.88551
published_at 2026-04-07T12:55:00Z
4
value 0.04089
scoring_system epss
scoring_elements 0.88569
published_at 2026-04-08T12:55:00Z
5
value 0.04089
scoring_system epss
scoring_elements 0.88574
published_at 2026-04-09T12:55:00Z
6
value 0.04089
scoring_system epss
scoring_elements 0.88586
published_at 2026-04-21T12:55:00Z
7
value 0.04089
scoring_system epss
scoring_elements 0.88578
published_at 2026-04-12T12:55:00Z
8
value 0.04089
scoring_system epss
scoring_elements 0.88579
published_at 2026-04-13T12:55:00Z
9
value 0.04089
scoring_system epss
scoring_elements 0.88592
published_at 2026-04-16T12:55:00Z
10
value 0.04089
scoring_system epss
scoring_elements 0.88588
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-3341
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3341
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3341
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3BMTC7I5LGY4FCIZLHPNC4WWC6VNLFER/
reference_id 3BMTC7I5LGY4FCIZLHPNC4WWC6VNLFER
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-15T16:21:21Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3BMTC7I5LGY4FCIZLHPNC4WWC6VNLFER/
4
reference_url https://blog.clamav.net/2020/05/clamav-01023-security-patch-released.html
reference_id clamav-01023-security-patch-released.html
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-15T16:21:21Z/
url https://blog.clamav.net/2020/05/clamav-01023-security-patch-released.html
5
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5YWYT27SBTV4RZSGFHIQUI4LQVFASWS/
reference_id L5YWYT27SBTV4RZSGFHIQUI4LQVFASWS
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-15T16:21:21Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5YWYT27SBTV4RZSGFHIQUI4LQVFASWS/
6
reference_url https://lists.debian.org/debian-lts-announce/2020/05/msg00018.html
reference_id msg00018.html
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-15T16:21:21Z/
url https://lists.debian.org/debian-lts-announce/2020/05/msg00018.html
7
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ROBJOGJOT44MVDX7RQEACYHQN4LYW5RK/
reference_id ROBJOGJOT44MVDX7RQEACYHQN4LYW5RK
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-15T16:21:21Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ROBJOGJOT44MVDX7RQEACYHQN4LYW5RK/
8
reference_url https://usn.ubuntu.com/4370-1/
reference_id USN-4370-1
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-15T16:21:21Z/
url https://usn.ubuntu.com/4370-1/
9
reference_url https://usn.ubuntu.com/4370-2/
reference_id USN-4370-2
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-15T16:21:21Z/
url https://usn.ubuntu.com/4370-2/
fixed_packages
0
url pkg:deb/debian/clamav@0.103.6%2Bdfsg-0%2Bdeb10u1
purl pkg:deb/debian/clamav@0.103.6%2Bdfsg-0%2Bdeb10u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2aju-u36p-gug9
1
vulnerability VCID-4z4r-2w8m-r7dz
2
vulnerability VCID-63vt-1nc8-6kfc
3
vulnerability VCID-d3u3-epeb-guh9
4
vulnerability VCID-dn26-zfsc-ryec
5
vulnerability VCID-fp31-7krz-abbs
6
vulnerability VCID-ggz7-h35v-p7ep
7
vulnerability VCID-kurn-1uay-qqap
8
vulnerability VCID-mdfk-5ked-t3bu
9
vulnerability VCID-tzph-y73s-6qb9
10
vulnerability VCID-vdhk-r67a-s3fr
11
vulnerability VCID-wjvc-p75d-p3a9
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@0.103.6%252Bdfsg-0%252Bdeb10u1
aliases CVE-2020-3341
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vbmy-urt6-myha
6
url VCID-xfzw-afgg-fqdc
vulnerability_id VCID-xfzw-afgg-fqdc
summary 
Multiple vulnerabilities have been found in ClamAV, the worst of
    which could result in a Denial of Service condition.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-3481
reference_id
reference_type
scores
0
value 0.02963
scoring_system epss
scoring_elements 0.86421
published_at 2026-04-01T12:55:00Z
1
value 0.02963
scoring_system epss
scoring_elements 0.86432
published_at 2026-04-02T12:55:00Z
2
value 0.02963
scoring_system epss
scoring_elements 0.86451
published_at 2026-04-07T12:55:00Z
3
value 0.02963
scoring_system epss
scoring_elements 0.8647
published_at 2026-04-08T12:55:00Z
4
value 0.02963
scoring_system epss
scoring_elements 0.8648
published_at 2026-04-09T12:55:00Z
5
value 0.02963
scoring_system epss
scoring_elements 0.86495
published_at 2026-04-11T12:55:00Z
6
value 0.02963
scoring_system epss
scoring_elements 0.86492
published_at 2026-04-12T12:55:00Z
7
value 0.02963
scoring_system epss
scoring_elements 0.86487
published_at 2026-04-13T12:55:00Z
8
value 0.02963
scoring_system epss
scoring_elements 0.86502
published_at 2026-04-16T12:55:00Z
9
value 0.02963
scoring_system epss
scoring_elements 0.86507
published_at 2026-04-18T12:55:00Z
10
value 0.02963
scoring_system epss
scoring_elements 0.865
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-3481
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3481
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3481
2
reference_url https://blog.clamav.net/2020/07/clamav-01024-security-patch-released.html
reference_id clamav-01024-security-patch-released.html
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-13T17:13:21Z/
url https://blog.clamav.net/2020/07/clamav-01024-security-patch-released.html
3
reference_url https://security.gentoo.org/glsa/202007-23
reference_id GLSA-202007-23
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-13T17:13:21Z/
url https://security.gentoo.org/glsa/202007-23
4
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IJ67VH37NCG25PICGWFWZHSVG7PBT7MC/
reference_id IJ67VH37NCG25PICGWFWZHSVG7PBT7MC
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-13T17:13:21Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IJ67VH37NCG25PICGWFWZHSVG7PBT7MC/
5
reference_url https://lists.debian.org/debian-lts-announce/2020/08/msg00010.html
reference_id msg00010.html
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-13T17:13:21Z/
url https://lists.debian.org/debian-lts-announce/2020/08/msg00010.html
6
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QM7EXJHDEZJLWM2NKH6TCDXOBP5NNYIN/
reference_id QM7EXJHDEZJLWM2NKH6TCDXOBP5NNYIN
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-13T17:13:21Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QM7EXJHDEZJLWM2NKH6TCDXOBP5NNYIN/
7
reference_url https://usn.ubuntu.com/4435-1/
reference_id USN-4435-1
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-13T17:13:21Z/
url https://usn.ubuntu.com/4435-1/
8
reference_url https://usn.ubuntu.com/4435-2/
reference_id USN-4435-2
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-13T17:13:21Z/
url https://usn.ubuntu.com/4435-2/
fixed_packages
0
url pkg:deb/debian/clamav@0.103.6%2Bdfsg-0%2Bdeb10u1
purl pkg:deb/debian/clamav@0.103.6%2Bdfsg-0%2Bdeb10u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2aju-u36p-gug9
1
vulnerability VCID-4z4r-2w8m-r7dz
2
vulnerability VCID-63vt-1nc8-6kfc
3
vulnerability VCID-d3u3-epeb-guh9
4
vulnerability VCID-dn26-zfsc-ryec
5
vulnerability VCID-fp31-7krz-abbs
6
vulnerability VCID-ggz7-h35v-p7ep
7
vulnerability VCID-kurn-1uay-qqap
8
vulnerability VCID-mdfk-5ked-t3bu
9
vulnerability VCID-tzph-y73s-6qb9
10
vulnerability VCID-vdhk-r67a-s3fr
11
vulnerability VCID-wjvc-p75d-p3a9
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@0.103.6%252Bdfsg-0%252Bdeb10u1
aliases CVE-2020-3481
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xfzw-afgg-fqdc
7
url VCID-xwgq-w8k4-xbcn
vulnerability_id VCID-xwgq-w8k4-xbcn
summary A vulnerability in the Excel XLM macro parsing module in Clam AntiVirus (ClamAV) Software versions 0.103.0 and 0.103.1 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improper error handling that may result in an infinite loop. An attacker could exploit this vulnerability by sending a crafted Excel file to an affected device. An exploit could allow the attacker to cause the ClamAV scanning process hang, resulting in a denial of service condition.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-1252
reference_id
reference_type
scores
0
value 0.00539
scoring_system epss
scoring_elements 0.67616
published_at 2026-04-21T12:55:00Z
1
value 0.00539
scoring_system epss
scoring_elements 0.67623
published_at 2026-04-12T12:55:00Z
2
value 0.00539
scoring_system epss
scoring_elements 0.6759
published_at 2026-04-13T12:55:00Z
3
value 0.00539
scoring_system epss
scoring_elements 0.67625
published_at 2026-04-16T12:55:00Z
4
value 0.00539
scoring_system epss
scoring_elements 0.67514
published_at 2026-04-01T12:55:00Z
5
value 0.00539
scoring_system epss
scoring_elements 0.6755
published_at 2026-04-02T12:55:00Z
6
value 0.00539
scoring_system epss
scoring_elements 0.67571
published_at 2026-04-04T12:55:00Z
7
value 0.00539
scoring_system epss
scoring_elements 0.67549
published_at 2026-04-07T12:55:00Z
8
value 0.00539
scoring_system epss
scoring_elements 0.676
published_at 2026-04-08T12:55:00Z
9
value 0.00539
scoring_system epss
scoring_elements 0.67614
published_at 2026-04-09T12:55:00Z
10
value 0.00539
scoring_system epss
scoring_elements 0.67637
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-1252
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1252
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1252
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986622
reference_id 986622
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986622
4
reference_url https://security.archlinux.org/AVG-1787
reference_id AVG-1787
reference_type
scores
0
value Low
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1787
5
reference_url https://blog.clamav.net/2021/04/clamav-01032-security-patch-release.html
reference_id clamav-01032-security-patch-release.html
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-08T20:02:36Z/
url https://blog.clamav.net/2021/04/clamav-01032-security-patch-release.html
6
reference_url https://usn.ubuntu.com/4918-1/
reference_id USN-4918-1
reference_type
scores
url https://usn.ubuntu.com/4918-1/
7
reference_url https://usn.ubuntu.com/4918-2/
reference_id USN-4918-2
reference_type
scores
url https://usn.ubuntu.com/4918-2/
fixed_packages
0
url pkg:deb/debian/clamav@0.103.6%2Bdfsg-0%2Bdeb10u1
purl pkg:deb/debian/clamav@0.103.6%2Bdfsg-0%2Bdeb10u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2aju-u36p-gug9
1
vulnerability VCID-4z4r-2w8m-r7dz
2
vulnerability VCID-63vt-1nc8-6kfc
3
vulnerability VCID-d3u3-epeb-guh9
4
vulnerability VCID-dn26-zfsc-ryec
5
vulnerability VCID-fp31-7krz-abbs
6
vulnerability VCID-ggz7-h35v-p7ep
7
vulnerability VCID-kurn-1uay-qqap
8
vulnerability VCID-mdfk-5ked-t3bu
9
vulnerability VCID-tzph-y73s-6qb9
10
vulnerability VCID-vdhk-r67a-s3fr
11
vulnerability VCID-wjvc-p75d-p3a9
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@0.103.6%252Bdfsg-0%252Bdeb10u1
aliases CVE-2021-1252
risk_score 1.9
exploitability 0.5
weighted_severity 3.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xwgq-w8k4-xbcn
8
url VCID-zeub-1qhs-pyfh
vulnerability_id VCID-zeub-1qhs-pyfh
summary 
Multiple vulnerabilities have been found in ClamAV, the worst of
    which could result in a Denial of Service condition.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-3350
reference_id
reference_type
scores
0
value 0.00131
scoring_system epss
scoring_elements 0.32519
published_at 2026-04-01T12:55:00Z
1
value 0.00131
scoring_system epss
scoring_elements 0.32668
published_at 2026-04-02T12:55:00Z
2
value 0.00131
scoring_system epss
scoring_elements 0.32703
published_at 2026-04-04T12:55:00Z
3
value 0.00131
scoring_system epss
scoring_elements 0.32524
published_at 2026-04-07T12:55:00Z
4
value 0.00131
scoring_system epss
scoring_elements 0.32571
published_at 2026-04-16T12:55:00Z
5
value 0.00131
scoring_system epss
scoring_elements 0.32598
published_at 2026-04-09T12:55:00Z
6
value 0.00131
scoring_system epss
scoring_elements 0.32599
published_at 2026-04-11T12:55:00Z
7
value 0.00131
scoring_system epss
scoring_elements 0.32562
published_at 2026-04-12T12:55:00Z
8
value 0.00131
scoring_system epss
scoring_elements 0.32535
published_at 2026-04-13T12:55:00Z
9
value 0.00131
scoring_system epss
scoring_elements 0.3255
published_at 2026-04-18T12:55:00Z
10
value 0.00131
scoring_system epss
scoring_elements 0.32517
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-3350
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3350
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3350
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-famp-ZEpdXy
reference_id cisco-sa-famp-ZEpdXy
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-15T16:27:39Z/
url https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-famp-ZEpdXy
4
reference_url https://security.gentoo.org/glsa/202007-23
reference_id GLSA-202007-23
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-15T16:27:39Z/
url https://security.gentoo.org/glsa/202007-23
5
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IJ67VH37NCG25PICGWFWZHSVG7PBT7MC/
reference_id IJ67VH37NCG25PICGWFWZHSVG7PBT7MC
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-15T16:27:39Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IJ67VH37NCG25PICGWFWZHSVG7PBT7MC/
6
reference_url https://lists.debian.org/debian-lts-announce/2020/08/msg00010.html
reference_id msg00010.html
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-15T16:27:39Z/
url https://lists.debian.org/debian-lts-announce/2020/08/msg00010.html
7
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QM7EXJHDEZJLWM2NKH6TCDXOBP5NNYIN/
reference_id QM7EXJHDEZJLWM2NKH6TCDXOBP5NNYIN
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-15T16:27:39Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QM7EXJHDEZJLWM2NKH6TCDXOBP5NNYIN/
8
reference_url https://usn.ubuntu.com/4435-1/
reference_id USN-4435-1
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-15T16:27:39Z/
url https://usn.ubuntu.com/4435-1/
9
reference_url https://usn.ubuntu.com/4435-2/
reference_id USN-4435-2
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-15T16:27:39Z/
url https://usn.ubuntu.com/4435-2/
fixed_packages
0
url pkg:deb/debian/clamav@0.103.6%2Bdfsg-0%2Bdeb10u1
purl pkg:deb/debian/clamav@0.103.6%2Bdfsg-0%2Bdeb10u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2aju-u36p-gug9
1
vulnerability VCID-4z4r-2w8m-r7dz
2
vulnerability VCID-63vt-1nc8-6kfc
3
vulnerability VCID-d3u3-epeb-guh9
4
vulnerability VCID-dn26-zfsc-ryec
5
vulnerability VCID-fp31-7krz-abbs
6
vulnerability VCID-ggz7-h35v-p7ep
7
vulnerability VCID-kurn-1uay-qqap
8
vulnerability VCID-mdfk-5ked-t3bu
9
vulnerability VCID-tzph-y73s-6qb9
10
vulnerability VCID-vdhk-r67a-s3fr
11
vulnerability VCID-wjvc-p75d-p3a9
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@0.103.6%252Bdfsg-0%252Bdeb10u1
aliases CVE-2020-3350
risk_score 2.5
exploitability 0.5
weighted_severity 5.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zeub-1qhs-pyfh
Risk_score4.5
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@0.103.6%252Bdfsg-0%252Bdeb10u1