ClamAV

by Cisco Systems, Inc.v1.5.2

Last updated Jun 8, 2026

ClamAV® is an open-source antivirus engine for detecting trojans, viruses, malware & other malicious threats.

Install with winget

$ winget install --id Cisco.ClamAV --exact --version 1.5.2

Run in Command Prompt, PowerShell, or Windows Terminal. Prompts for any agreements.

Silent install command for ClamAV

ClamAV uses MSI (WiX). The silent install switches are /quiet /norestart.

One-line silent install (x64, machine scope)

msiexec.exe /i clamav-1.5.2.win.x64.msi /quiet /norestart

See the full silent install reference for ClamAV →

Built by Pckgr

For Intune admins

Stop chasing app updates. Pckgr patches them for you.

Automated application patching for Microsoft Intune. Pckgr keeps a curated library of 1,000+ apps continuously up-to-date in your tenant via Microsoft Graph - no manual repackaging, no chasing vendor sites.

Start free 30-day trial

No credit card required.

Installers · v1.5.2

Architecture	Type	Scope	Download
x86	MSI WiX	machine	Direct
x64	MSI WiX	machine	Direct
arm64	MSI WiX	machine	Direct

Copy a command tailored to that specific architecture, type, and scope - useful when winget would otherwise pick a different default.

Security

3 known CVEs via NVD

medium5.5Patched in wingetCVE-2020-3350affects before 0.102.4Jun 17, 2020
A vulnerability in the endpoint software of Cisco AMP for Endpoints and Clam AntiVirus could allow an authenticated, local attacker to cause the running software to delete arbitrary files on the system. The vulnerability is due to a race condition that could occur when scanning...
Vendor advisory
high7.5Patched in wingetCVE-2020-3341affects >=0.101 and <=0.102.2May 12, 2020
A vulnerability in the PDF archive parsing module in Clam AntiVirus (ClamAV) Software versions 0.101 - 0.102.2 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a stack buffer overflow read....
Vendor advisory
high7.5Patched in wingetCVE-2020-3327affects <=0.102.2May 12, 2020
A vulnerability in the ARJ archive parsing module in Clam AntiVirus (ClamAV) Software versions 0.102.2 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a heap buffer overflow read. An attack...
Vendor advisory

Source: NVD, updated just now. Patch status is best-effort: NVD's fix version is compared against the latest version in winget, but the two version formats don't always align. Confirm with the vendor advisory before treating any specific build as safe.

See a CVE that affects your fleet? Push the patched version to Intune in one click with Pckgr.

Related apps

Cisco JVDI AgentCisco Systems, Inc.
Cisco.JabberVDIAgentv15.2.1.60904
Use Jabber with Citrix or VMWare VDI solution.
P
ProximityCisco Systems, Inc.
Cisco.Proximityv4.0.0.0
Cisco Proximity allows you to control your video system and share wirelessly.
Chez SchemeCisco Systems, Inc.
Cisco.ChezSchemev10.4.1
Chez Scheme is both a programming language and an implementation of that language, with supporting tools and documentation.
Notepad++Notepad++ Team
Notepad++.Notepad++v8.9.6.4
Notepad++ is a free source code editor that supports several languages.
CC Switchfarion1231
farion1231.CC-Switchv3.16.2
A cross-platform desktop All-in-One assistant tool for Claude Code, Codex, OpenCode, openclaw & Gemini CLI.
PowerShellMicrosoft Corporation
Microsoft.PowerShellv7.6.2.0
PowerShell is a cross-platform task automation solution made up of a command-line shell, a scripting language, and a configuration management framework. PowerShell runs on Windows, Linux, and macOS.

More from Cisco Systems, Inc. or browse antivirus, clamav, open-source.

Frequently asked questions

How do I install ClamAV on Windows?

Open Windows Terminal, PowerShell, or Command Prompt and run: winget install --id Cisco.ClamAV --exact --version 1.5.2. winget downloads the installer from Cisco Systems, Inc. and runs it. Requires Windows 10 (1809+) or Windows 11.

How do I install ClamAV silently for unattended deployment?

Add --silent and accept the agreements upfront: winget install --id Cisco.ClamAV --exact 1.5.2 --silent --accept-package-agreements --accept-source-agreements. This is the variant Intune, Configuration Manager, and other deployment tools should use.

What are the silent install switches for ClamAV?

ClamAV uses MSI (WiX). Run the downloaded installer with: msiexec.exe /i clamav-1.5.2.win.x64.msi /quiet /norestart. The silent switches are /quiet /norestart.

How do I uninstall ClamAV via winget?

Run: winget uninstall --id Cisco.ClamAV --exact. Add --silent for unattended uninstalls. winget will use the registered uninstaller from ClamAV's Apps & Features entry.

Is ClamAV free?

ClamAV is distributed under GPL-2.0. Refer to the publisher (https://github.com/Cisco-Talos/clamav) for the full license terms - Wingetly itself does not charge for installation.

Does ClamAV work on Windows 10?

Yes, as long as your Windows 10 build supports winget (1809 or newer). winget ships with App Installer on Windows 10/11 and pulls ClamAV directly from the publisher.

How do I keep ClamAV up to date?

Run winget upgrade --id Cisco.ClamAV --exact, or winget upgrade --all to update everything winget tracks. We index 8 versions of ClamAV from microsoft/winget-pkgs.

Recent versions

1.5.2latest
1.5.1
1.5.0
1.4.2
1.3.1
1.3.0
1.1.0
0.105.0