CVE-2025-20234

CWE-125Out-of-bounds Read10 documents7 sources
Severity
7.5HIGH
EPSS
0.3%
top 49.15%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Cisco Secure EndpointCisco Secure Endpoint Private CloudClamav Clamav+1 more
Timeline
PublishedJun 18
Latest updateJul 7

Description

A vulnerability in Universal Disk Format (UDF) processing of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to a memory overread during UDF file scanning. An attacker could exploit this vulnerability by submitting a crafted file containing UDF content to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to terminate the ClamAV scanning process, resulting

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:LExploitability: 3.9 | Impact: 1.4

Affected Packages6 packages

NVDclamav/clamav1.2.01.4.3
Debianclamav< 1.4.3+dfsg-1+1
Ubuntuclamav< 1.4.3+dfsg-0ubuntu0.22.04.1+2
NVDcisco/secure_endpoint8.0.1.211608.4.5+2

🔴Vulnerability Details

5
OSV
clamav vulnerabilities2025-07-07
OSV
clamav vulnerabilities2025-07-02
OSV
CVE-2025-20234: A vulnerability in Universal Disk Format (UDF) processing of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS)2025-06-18
CVEList
ClamAV UDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability2025-06-18
GHSA
GHSA-xwph-f2wp-xxgp: A vulnerability in Universal Disk Format (UDF) processing of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS)2025-06-18

📋Vendor Advisories

4
Ubuntu
ClamAV vulnerabilities2025-07-07
Ubuntu
ClamAV vulnerabilities2025-07-02
Cisco
ClamAV UDF File Parsing Out-of-Bounds Read Information Disclosure Vulnerability2025-06-18
Debian
CVE-2025-20234: clamav - A vulnerability in Universal Disk Format (UDF) processing of ClamAV could allow ...2025
CVE-2025-20234 (HIGH CVSS 7.5) | A vulnerability in Universal Disk F | cvebase.io