Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
avast antivirus vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2020-10862
An issue exists in Avast Antivirus prior to 20. The aswTask RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe) allows malicious users to achieve Local Privilege Escalation (LPE) via RPC.
Avast Antivirus
7.8
CVSSv3
CVE-2019-18894
In Avast Premium Security 19.8.2393, attackers can send a specially crafted request to the local web server run by Avast Antivirus on port 27275 to support Bank Mode functionality. A flaw in the processing of a command allows execution of arbitrary OS commands with the privileges...
Avast Premium Security 19.8.2393
7.8
CVSSv3
CVE-2019-17093
An issue exists in Avast antivirus prior to 19.8 and AVG antivirus prior to 19.8. A DLL Preloading vulnerability allows an malicious user to implant %WINDIR%\system32\wbemcomn.dll, which is loaded into a protected-light process (PPL) and might bypass some of the self-defense mech...
Avg Anti-virus
Avast Antivirus
7.8
CVSSv3
CVE-2018-12572
Avast Free Antivirus before 19.1.2360 stores user credentials in memory upon login, which allows local users to obtain sensitive information by dumping AvastUI.exe application memory and parsing the data.
Avast Free Antivirus
7.8
CVSSv3
CVE-2015-8620
Heap-based buffer overflow in the Avast virtualization driver (aswSnx.sys) in Avast Internet Security, Pro Antivirus, Premier, and Free Antivirus prior to 11.1.2253 allows local users to gain privileges via a Unicode file path in an IOCTL request.
Avast Avast Free Antivirus
Avast Avast Internet Security
Avast Avast Premier
Avast Avast Pro Antivirus
7.5
CVSSv3
CVE-2020-10865
An issue exists in Avast Antivirus prior to 20. The aswTask RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe) allows malicious users to make arbitrary changes to the Components section of the Stats.ini file via RPC from a Low Integrity process.
Avast Antivirus
7.5
CVSSv3
CVE-2020-10866
An issue exists in Avast Antivirus prior to 20. The aswTask RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe) allows malicious users to enumerate the network interfaces and access points from a Low Integrity process via RPC.
Avast Antivirus
7.5
CVSSv3
CVE-2020-10868
An issue exists in Avast Antivirus prior to 20. The aswTask RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe) allows malicious users to launch the Repair App RPC call from a Low Integrity process.
Avast Antivirus
7.5
CVSSv3
CVE-2020-10860
An issue exists in Avast Antivirus prior to 20. An Arbitrary Memory Address Overwrite vulnerability in the aswAvLog Log Library results in Denial of Service of the Avast Service (AvastSvc.exe).
Avast Antivirus
7.5
CVSSv3
CVE-2020-10861
An issue exists in Avast Antivirus prior to 20. The aswTask RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe) allows malicious users to achieve Arbitrary File Deletion from Avast Program Path via RPC, when Self Defense is Enabled.
Avast Antivirus
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »