all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Critical RCE Vulnerability Discovered in ClamAV Open-Source Antivirus Software

Add to bookmarks
Feb. 17, 2023, 5:46 a.m. | info@thehackernews.com (The Hacker News)

The Hacker News thehackernews.com

Cisco has rolled out security updates to address a critical flaw reported in the ClamAV open source antivirus engine that could lead to remote code execution on susceptible devices.
Tracked as CVE-2023-20032 (CVSS score: 9.8), the issue relates to a case of remote code execution residing in the HFS+ file parser component.
The flaw affects versions 1.0.0 and earlier, 0.105.1 and earlier, and

0.105.1 1.0.0 address antivirus antivirus software case cisco clamav code code execution critical critical flaw cve cvss devices engine file flaw issue open source rce remote code remote code execution score security security updates software updates vulnerability

Visit resource

More from thehackernews.com / The Hacker News

Palo Alto Networks Discloses More Details on Critical PAN-OS Flaw Under Attack 3 hours ago | thehackernews.com
alto attack bugs critical +22
Critical Update: CrushFTP Zero-Day Flaw Exploited in Targeted Attacks 3 hours ago | thehackernews.com
attacks can critical critical update +25
BlackTech Targets Tech, Research, and Gov Sectors New 'Deuterbear' Tool 19 hours ago | thehackernews.com
actor asia attack backdoor +15
How Attackers Can Own a Business Without Touching the Endpoint 21 hours ago | thehackernews.com
apps attack attackers attack techniques +14
Akira Ransomware Gang Extorts $42 Million; Now Targets Linux Servers 21 hours ago | thehackernews.com
akira akira ransomware america businesses +19
Hackers Target Middle East Governments with Evasive "CR4T" Backdoor 1 day, 2 hours ago | thehackernews.com
backdoor campaign cybersecurity cybersecurity company +15
OfflRouter Malware Evades Detection in Ukraine for Almost a Decade 1 day, 18 hours ago | thehackernews.com
analysis called cisco cisco talos +22
FIN7 Cybercrime Group Targeting U.S. Auto Industry with Carbanak Backdoor 1 day, 19 hours ago | thehackernews.com
auto auto industry automotive automotive industry +17
Recover from Ransomware in 5 Minutes—We will Teach You How! 1 day, 21 hours ago | thehackernews.com
attack back can cdp +21

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Cyber Security Architect - SR

@ ERCOT | Taylor, TX
View on infosec-jobs.com

SOC Analyst

@ Wix | Tel Aviv, Israel
View on infosec-jobs.com

Associate Director, SIEM & Detection Engineering(remote)

@ Humana | Remote US
View on infosec-jobs.com

Senior DevSecOps Architect

@ Computacenter | Birmingham, GB, B37 7YS
View on infosec-jobs.com
View more jobs