Avast

Antivirus

30 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2024-9484

  • EPSS 0.03%
  • Veröffentlicht 04.10.2024 13:15:13
  • Zuletzt bearbeitet 08.11.2024 20:55:14

An null-pointer-derefrence in the engine module in AVG/Avast Antivirus signature <24092400 released on 24/Sep/2024 on MacOS allows a malformed xar file to crash the application during file processing.

5.5

CVE-2024-9483

  • EPSS 0.03%
  • Veröffentlicht 04.10.2024 13:15:12
  • Zuletzt bearbeitet 08.11.2024 20:54:30

A null-pointer-dereference in the signature verification module in AVG/Avast Antivirus signature <24092400 released on 24/Sep/2024 on MacOS may allow a malformed xar file to crash the application during processing.

5.5

CVE-2024-9482

  • EPSS 0.03%
  • Veröffentlicht 04.10.2024 13:15:12
  • Zuletzt bearbeitet 08.11.2024 20:49:58

An out-of-bounds write in the engine module in AVG/Avast Antivirus signature <24092400 released on 24/Sep/2024 on MacOS allows a malformed Mach-O file to crash the application during file processing.

5.5

CVE-2024-9481

  • EPSS 0.03%
  • Veröffentlicht 04.10.2024 13:15:12
  • Zuletzt bearbeitet 08.11.2024 20:49:03

An out-of-bounds write in the engine module in AVG/Avast Antivirus signature <24092400 released on 24/Sep/2024 on MacOS allows a malformed eml file to crash the application during file processing.

7

CVE-2024-5102

  • EPSS 0.08%
  • Veröffentlicht 10.06.2024 17:16:34
  • Zuletzt bearbeitet 21.11.2024 09:46:58

A sym-linked file accessed via the repair function in Avast Antivirus <24.2 on Windows may allow user to elevate privilege to delete arbitrary files or run processes as NT AUTHORITY\SYSTEM. The vulnerability exists within the "Repair" (settings -> tr...

5.5

CVE-2020-20118

  • EPSS 0.03%
  • Veröffentlicht 11.07.2023 14:15:09
  • Zuletzt bearbeitet 21.11.2024 05:11:50

Buffer Overflow vulnerability in Avast AntiVirus before v.19.7 allows a local attacker to cause a denial of service via a crafted request to the aswSnx.sys driver.

5.5

CVE-2023-1587

  • EPSS 0.06%
  • Veröffentlicht 19.04.2023 19:15:07
  • Zuletzt bearbeitet 21.11.2024 07:39:29

Avast and AVG Antivirus for Windows were susceptible to a NULL pointer dereference issue via RPC-interface. The issue was fixed with Avast and AVG Antivirus version 22.11

4.7

CVE-2023-1586

  • EPSS 0.13%
  • Veröffentlicht 19.04.2023 19:15:06
  • Zuletzt bearbeitet 21.11.2024 07:39:29

Avast and AVG Antivirus for Windows were susceptible to a Time-of-check/Time-of-use (TOCTOU) vulnerability in the restore process leading to arbitrary file creation. The issue was fixed with Avast and AVG Antivirus version 22.11

6.3

CVE-2023-1585

  • EPSS 0.07%
  • Veröffentlicht 19.04.2023 19:15:06
  • Zuletzt bearbeitet 21.11.2024 07:39:29

Avast and AVG Antivirus for Windows were susceptible to a Time-of-check/Time-of-use (TOCTOU) vulnerability in the Quarantine process, leading to arbitrary file/directory deletion. The issue was fixed with Avast and AVG Antivirus version 22.11 and vi...

7.8

CVE-2022-4294

  • EPSS 0.09%
  • Veröffentlicht 10.01.2023 10:15:12
  • Zuletzt bearbeitet 21.11.2024 07:34:57

Norton, Avira, Avast and AVG Antivirus for Windows may be susceptible to a Privilege Escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that a...