Clamscan Project

clamscan_project

1 CVE • 1 product

Products (1)

Click to collapse

Toggle

Clamscan

clamscan

1 CVE

CVEs (1)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-7613 1Clamscan Project 1Clamscan Nov 21, 2024 Apr 7, 2020 N/A· v4 8.1 HIGH· v3 6.8 MEDIUM· v2 clamscan through 1.2.0 is vulnerable to Command Injection. It is possible to inject arbitrary commands as part of the `_is_clamav_binary` function located within `Index.js`. It should be noted that this vulnerability req...Show more clamscan through 1.2.0 is vulnerable to Command Injection. It is possible to inject arbitrary commands as part of the `_is_clamav_binary` function located within `Index.js`. It should be noted that this vulnerability requires a pre-requisite that a folder should be created with the same command that will be chained to execute. This lowers the risk of this issue.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2020-7613

1Clamscan Project

1Clamscan

Nov 21, 2024

Apr 7, 2020

N/A· v4

8.1 HIGH· v3

6.8 MEDIUM· v2

clamscan through 1.2.0 is vulnerable to Command Injection. It is possible to inject arbitrary commands as part of the `_is_clamav_binary` function located within `Index.js`. It should be noted that this vulnerability requires a pre-requisite that a folder should be created with the same command that will be chained to execute. This lowers the risk of this issue.Show less