- EPSS 0.23%
- Veröffentlicht 10.06.2024 17:16:34
- Zuletzt bearbeitet 21.11.2024 09:46:58
A sym-linked file accessed via the repair function in Avast Antivirus <24.2 on Windows may allow user to elevate privilege to delete arbitrary files or run processes as NT AUTHORITY\SYSTEM. The vulnerability exists within the "Repair" (settings -> tr...
CVE-2020-20118
- EPSS 0.16%
- Veröffentlicht 11.07.2023 14:15:09
- Zuletzt bearbeitet 09.07.2026 00:16:52
Buffer Overflow vulnerability in Avast AntiVirus before v.19.7 allows a local attacker to cause a denial of service via a crafted request to the aswSnx.sys driver.
CVE-2023-1587
- EPSS 0.21%
- Veröffentlicht 19.04.2023 19:15:07
- Zuletzt bearbeitet 21.11.2024 07:39:29
Avast and AVG Antivirus for Windows were susceptible to a NULL pointer dereference issue via RPC-interface. The issue was fixed with Avast and AVG Antivirus version 22.11
CVE-2023-1586
- EPSS 0.21%
- Veröffentlicht 19.04.2023 19:15:06
- Zuletzt bearbeitet 21.11.2024 07:39:29
Avast and AVG Antivirus for Windows were susceptible to a Time-of-check/Time-of-use (TOCTOU) vulnerability in the restore process leading to arbitrary file creation. The issue was fixed with Avast and AVG Antivirus version 22.11
CVE-2023-1585
- EPSS 0.17%
- Veröffentlicht 19.04.2023 19:15:06
- Zuletzt bearbeitet 21.11.2024 07:39:29
Avast and AVG Antivirus for Windows were susceptible to a Time-of-check/Time-of-use (TOCTOU) vulnerability in the Quarantine process, leading to arbitrary file/directory deletion. The issue was fixed with Avast and AVG Antivirus version 22.11 and vi...
CVE-2022-4294
- EPSS 0.19%
- Veröffentlicht 10.01.2023 10:15:12
- Zuletzt bearbeitet 21.11.2024 07:34:57
Norton, Avira, Avast and AVG Antivirus for Windows may be susceptible to a Privilege Escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that a...
CVE-2021-45338
- EPSS 0.38%
- Veröffentlicht 27.12.2021 14:15:08
- Zuletzt bearbeitet 21.11.2024 06:32:06
Multiple privilege escalation vulnerabilities in Avast Antivirus prior to 20.4 allow a local user to gain elevated privileges by calling unnecessarily powerful internal methods of the main antivirus service which could lead to the (1) arbitrary file ...
CVE-2021-45339
- EPSS 0.32%
- Veröffentlicht 27.12.2021 14:15:08
- Zuletzt bearbeitet 21.11.2024 06:32:06
Privilege escalation vulnerability in Avast Antivirus prior to 20.4 allows a local user to gain elevated privileges by "hollowing" trusted process which could lead to the bypassing of Avast self-defense.
CVE-2021-45337
- EPSS 0.43%
- Veröffentlicht 27.12.2021 14:15:07
- Zuletzt bearbeitet 21.11.2024 06:32:06
Privilege escalation vulnerability in the Self-Defense driver of Avast Antivirus prior to 20.8 allows a local user with SYSTEM privileges to gain elevated privileges by "hollowing" process wsc_proxy.exe which could lead to acquire antimalware (AM-PPL...
CVE-2021-45336
- EPSS 0.46%
- Veröffentlicht 27.12.2021 14:15:07
- Zuletzt bearbeitet 21.11.2024 06:32:06
Privilege escalation vulnerability in the Sandbox component of Avast Antivirus prior to 20.4 allows a local sandboxed code to gain elevated privileges by using system IPC interfaces which could lead to exit the sandbox and acquire SYSTEM privileges.