CVSS 3.1 Score 5.3 of 10 (medium)


Published Mar 1, 2024


CVE-2024-20328 is a vulnerability in the VirusEvent feature of ClamAV, affecting products such as 'ufRsJ9', 'ufRsKP', 'ufRsJ-', 'ufQUwv', 'ufRsKE', 'ufRsKB', and 'ufRsKD'. This vulnerability allows a local attacker to inject arbitrary commands with the privileges of the application service account by supplying a file name containing command-line sequences. The attacker can exploit this vulnerability on systems using configuration options for the VirusEvent feature, potentially causing the application to execute arbitrary commands. ClamAV has released software updates to address the vulnerability, and there are no workarounds available. The risk score for this vulnerability is 46, with a base severity of MEDIUM.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.


Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future

Note: This is just a basic overview providing quick insights into CVE-2024-20328 information. Gain full access to comprehensive CVE data, third party vulnerabilities, compromised credentials and more with Recorded Future
  • Gain complete coverage of your cyber, third party, and physical attack surface
  • Proactively mitigate threats before they turn into costly attacks
  • Make fast, effective, data-driven decisions