Cisco ClamAV Denial of Service Vulnerability

Release Date: 8 Feb 2024 3083 Views

RISK: Medium Risk

TYPE: Security software and application - Security Software & Appliance

A vulnerability was identified in Cisco ClamAV. A remote attacker could exploit this vulnerability to trigger denial of service condition on the targeted system.

Impact

Denial of Service

System / Technologies affected

Cisco Secure Endpoint Connector for Windows versions prior to 7.5.17
Cisco Secure Endpoint Connector for Windows versions prior to 8.2.1
Cisco Secure Endpoint Private Cloud versions prior to 3.8.0

Solutions

Before installation of the software, please visit the vendor web-site for more details.

Apply fixes issued by the vendor:

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-hDffu6t

Vulnerability Identifier

CVE-2024-20290

Source

Cisco