Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-20032

CVSS 9.8 · Critical EPSS 7.12% · P92
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2023-20032

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A vulnerability in the HFS+ partition file parser of ClamAV versions 1.0.0 and earlier, 0.105.1 and earlier, and 0.103.7 and earlier could allow an unauthenticated, remote attacker to execute arbitrary code. This vulnerability is due to a missing buffer size check that may result in a heap buffer overflow write. An attacker could exploit this vulnerability by submitting a crafted HFS+ partition file to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to execute arbitrary code with the privileges of the ClamAV scanning process, or else crash the process, resulting in a denial of service (DoS) condition. For a description of this vulnerability, see the ClamAV blog ["https://blog.clamav.net/"].
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
未进行输入大小检查的缓冲区拷贝(传统缓冲区溢出)
Source: NVD (National Vulnerability Database)
Vulnerability Title
ClamAV 缓冲区错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
ClamAV(Clam AntiVirus)是ClamAV团队的一套免费且开源的杀毒软件。该软件用于检测木马、病毒、恶意软件和其他恶意威胁。 ClamAV存在缓冲区错误漏洞,该漏洞源于缺少缓冲区大小检查,可能导致堆缓冲区溢出写入,未经身份验证的远程攻击者利用该漏洞可以执行任意代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
CiscoCisco Secure Web Appliance 11.7.0-406 -
CiscoCisco Secure Endpoint 6.1.9 -
CiscoCisco Secure Endpoint Private Cloud Administration Portal N/A -

II. Public POCs for CVE-2023-20032

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2023-20032

登录查看更多情报信息。

Same Patch Batch · Cisco · 2023-02-16 · 9 CVEs total

CVE-2023-256537.5 HIGHImproper calculations in ECC implementation can trigger a Denial-of-Service (DoS)
CVE-2023-200147.5 HIGHCisco Nexus Dashboard 资源管理错误漏洞
CVE-2023-200096.5 MEDIUMCisco Secure Email 代码问题漏洞
CVE-2023-200856.1 MEDIUMCisco Identity Services Engine 跨站脚本漏洞
CVE-2023-200536.1 MEDIUMCisco Nexus Dashboard 跨站脚本漏洞
CVE-2023-200756.0 MEDIUMCisco Secure Email 操作系统命令注入漏洞
CVE-2022-209525.3 MEDIUMCisco Secure Web Appliance 输入验证错误漏洞
CVE-2023-200525.3 MEDIUMClamAV 安全漏洞

IV. Related Vulnerabilities

Same product: Cisco Secure Web Appliance
Same vendor: Cisco
Same weakness: CWE-120

V. Comments for CVE-2023-20032

No comments yet

Leave a comment