7.8
CVE-2026-6676
- EPSS 0.12%
- Veröffentlicht 12.06.2026 22:16:27
- Zuletzt bearbeitet 15.06.2026 20:49:19
- Quelle security@nortonlifelock.com
- CVE-Watchlists
- Unerledigt
Avira antivirus engine heap buffer OOB write when scanning a malformed POSIX tar archive
Heap buffer out-of-bounds write vulnerability in Avira Antivirus engine when scanning a malformed POSIX tar archive may allow Local Execution of Code or Denial-of-Service of the antivirus engine process. This issue affects Avira Antivirus on Windows, macOS, and Linux for engine builds before 8.3.27.12.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerGen Digital
≫
Produkt
Avira Antivirus
Default Statusaffected
Version
0
Version <
8.3.27.12
Status
affected
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.12% | 0.023 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| security@nortonlifelock.com | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
|
CWE-787 Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.
Für Zugriff zu Vulnerability Intelligence ist ein VulnDex Zugang erforderlich.
https://www.gendigital.com/us/en/contact-us/security-advisories/