π¨
SEVERITY: MEDIUM β CVSS 5.3
Security Advisory
TL;DR π
- A vulnerability in Universal Disk Format (UDF) processing of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to a memory overread during UDF file scanning. An attacker could exploit this vulnerability by submitting a crafted file containing UDF content to be scanned by ClamAV onβ¦
- No fixed release listed yet; apply mitigations and monitor.
- Workarounds are documented in the advisory.
- CVEs: CVE-2025-20234.
What happened π΅οΈββοΈ
Impacts of ClamAV DoS Vulnerability on Affected Platforms