← Back to CVE List

CVE-2024-20380

Published: 2024-04-18T20:15Z
Last Modified: 2024-11-21T08:52Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
A vulnerability in the HTML parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to an issue in the C to Rust foreign function interface. An attacker could exploit this vulnerability by submitting a crafted file containing HTML content to be scanned by ClamAV on an affected device. An exploit could allow the attacker to cause the ClamAV scanning process to terminate, resulting in a DoS condition on the affected software. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt