Vulnerability in ClamAV Allows Denial of Service Attack

A vulnerability was discovered in ClamAV, an open-source antivirus engine, allowing an attacker to trigger a denial of service (DoS). The notice was published on March 5, 2026, by the French government’s cybersecurity agency (CERT-FR). No specific CVE identifier, technical details about the flaw, or affected versions were provided in the report. The impact is limited to service disruption, with no mention of remote code execution or privilege escalation. The vulnerability was disclosed without additional context on exploitation methods or mitigation steps.