VDB
CVE-2026-20031
CVE-2026-20031
PUBLISHED
CVSS 5.300000190734863 MEDIUM
A vulnerability in the HTML Cascading Style Sheets (CSS) module of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper error handling when splitting UTF-8 strings. An attacker could exploit this vulnerability by submitting a crafted HTML file to be scanned by ClamAV on an affected device. A successful exploit could allow the attacker to terminate the scanning process.
EPSS 0.04% · 13.3th percentile
Risk Scores
CVSS 3.1
5.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
EPSS Score
0.04%
13.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Cisco Secure Endpoint | 8.4.4.30419, 7.0.5, 6.2.19 |
| ClamAV | ClamAV |
Exploit Intelligence
- CIRCL seen: CVE-2026-20031 (circl-sighting)
- cisco-sa-clamav-css-Fn4QSZ (circl)
- Cisco.ClamAV.locale.en-US.yaml (github-poc)
- Cisco.ClamAV.locale.en-US.yaml (github-poc)
- Cisco.ClamAV.locale.en-US.yaml (github-poc)
- Cisco.ClamAV.locale.en-US.yaml (github-poc)
- Cisco.ClamAV.locale.en-US.yaml (github-poc)
- Cisco.ClamAV.locale.en-US.yaml (github-poc)
- Cisco.ClamAV.locale.en-US.yaml (github-poc)
- Cisco.ClamAV.locale.en-US.yaml (github-poc)
…and 7 more exploits
Timeline
- Oct 8, 2025 CVE ID Reserved
- Mar 4, 2026 CVE Published
- Mar 5, 2026 EPSS Score
- Mar 5, 2026 PoC Published
- Mar 5, 2026 CVE Updated
- Mar 6, 2026 EPSS Score
- Mar 7, 2026 EPSS Score
- Mar 9, 2026 EPSS Score
- Mar 10, 2026 EPSS Score
- Mar 11, 2026 EPSS Score
- Mar 12, 2026 EPSS Score
- Mar 14, 2026 EPSS Score