Cisco ClamAV Denial of Service Vulnerability
A vulnerability was identified in Cisco ClamAV. A remote attacker could exploit this vulnerability to trigger denial of service condition on the targeted system.
Note:
Proof Of Concept Exploit Code Is Publicly Available for CVE-2025-20128. A successful exploit could allow the attacker to terminate the ClamAV scanning process, resulting in a DoS condition on the affected software.
RISK: High Risk
TYPE: Security software and application – Security Software & Appliance
Impact
- Denial of Service
System / Technologies affected
- Cisco Secure Endpoint Connector for Linux versions prior to 1.25.1
- Cisco Secure Endpoint Connector for Mac versions prior to 1.24.4
- Cisco Secure Endpoint Connector for Windows versions prior to 7.5.20
- Cisco Secure Endpoint Connector for Windows versions prior to 8.4.3
- Cisco Secure Endpoint Private Cloud versions prior to 4.2.0
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
Vulnerability Identifier
Source
Related Link
A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.
If you like the site, please support us on “Patreon” or “Buy Me A Coffee” using the buttons below
To keep up to date follow us on the below channels.
