CVE-2021-1252

Source
https://cve.org/CVERecord?id=CVE-2021-1252
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-1252.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2021-1252
Downstream
Related
Published
2021-04-08T05:15:12.237Z
Modified
2026-07-09T04:10:35.981872Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

A vulnerability in the Excel XLM macro parsing module in Clam AntiVirus (ClamAV) Software versions 0.103.0 and 0.103.1 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to improper error handling that may result in an infinite loop. An attacker could exploit this vulnerability by sending a crafted Excel file to an affected device. An exploit could allow the attacker to cause the ClamAV scanning process hang, resulting in a denial of service condition.

References

Affected packages

Git / github.com/cisco-talos/clamav

Affected ranges

Type
GIT
Repo
https://github.com/cisco-talos/clamav
Events
Database specific
{
    "source": "CPE_STRING",
    "cpe": [
        "cpe:2.3:a:clamav:clamav:0.103.0:*:*:*:*:*:*:*",
        "cpe:2.3:a:clamav:clamav:0.103.1:*:*:*:*:*:*:*"
    ],
    "extracted_events": [
        {
            "introduced": "0.103.0"
        },
        {
            "last_affected": "0.103.0"
        },
        {
            "introduced": "0.103.1"
        },
        {
            "last_affected": "0.103.1"
        }
    ]
}

Affected versions

0.*
0.103.0
0.103.1
clamav-0.*
clamav-0.103.0
clamav-0.103.1

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-1252.json"