CVE-2024-20506
CVSS 3.1 Score 6.1 of 10 (medium)
Details
Summary
CVE-2024-20506 is a vulnerability found in Clam AntiVirus (ClamAV) versions 1.4.0, 1.3.2 and earlier, 1.2.x, 1.0.6 and prior, as well as all versions from 0.105.x to 0.103.11. This vulnerability arises from the ClamD service module's failure to validate the integrity of its log file before writing to it, allowing an authenticated local attacker to replace the log file with a symbolic link to a critical system file, potentially leading to file corruption upon process restart. Organizations can remediate this issue by upgrading to ClamAV version 1.4.1 or later, or by ensuring that the log file is not susceptible to such manipulation through access controls. The risk posed by this vulnerability includes medium-level integrity impacts and high availability impacts, which could disrupt critical operations if exploited successfully. The exploitability score for this vulnerability is rated at 1.8, indicating relatively low complexity for execution with minimal privileges required by the attacker.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.