CNNVD-202602-2163 Information

CNNVD ID

CNNVD-202602-2163

Related CVE

CVE-2020-37167

• CNNVD Published: 2026-02-12

Description (Chinese)

Cisco ClamAV ClamBC是美国思科（Cisco）公司的一个字节码签名系统。 Cisco ClamAV ClamBC存在代码注入漏洞，该漏洞源于函数名处理存在弱输入验证，可能导致攻击者执行恶意字节码或引发意外行为。

Description (English)

Cisco ClamAV ClamBC is a byte-coded signature system for Cisco Corporation. Cisco ClamAV ClamBC has a code-infusion loophole, which stems from the weak input verification of the function name processing, which may lead to malicious byte codes being carried out by the attackers or to the initiation of an accidental act.

Hazard Level

Low

Vulnerability Type

代码注入

Affected Vendor

思科

Published

2026-02-12

Last Modified

2026-02-24

References

https://www.clamav.net/ https://www.exploit-db.com/exploits/47687 https://www.vulncheck.com/advisories/clamav-clambc-clambc-executable-regular-expression