Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
avast avast - vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-2384
Directory traversal vulnerability in a third-party compression library (UNACEV2.DLL), as used in avast! Antivirus Home/Professional Edition 4.6.665 and Server Edition 4.6.460, allows remote malicious users to write arbitrary files via an ACE archive containing filenames with (1) ...
Alwil Avast Antivirus 4.6.665
Alwil Avast Antivirus 4.6.460
NA
CVE-2005-2385
Buffer overflow in a third-party compression library (UNACEV2.DLL), as used in avast! Antivirus Home/Professional Edition 4.6.665 and Server Edition 4.6.460, allows remote malicious users to execute arbitrary code via an ACE archive containing a long filename.
Alwil Avast Antivirus 4.6.665
Alwil Avast Antivirus 4.6.460
8.8
CVSSv3
CVE-2021-45335
Sandbox component in Avast Antivirus before 20.4 has an insecure permission which could be abused by local user to control the outcome of scans, and therefore evade detection or delete arbitrary system files.
Avast Antivirus
7.8
CVSSv3
CVE-2021-45339
Privilege escalation vulnerability in Avast Antivirus before 20.4 allows a local user to gain elevated privileges by "hollowing" trusted process which could lead to the bypassing of Avast self-defense.
Avast Antivirus
9.8
CVSSv3
CVE-2017-8307
In Avast Antivirus before v17, using the LPC interface API exposed by the AvastSVC.exe Windows service, it is possible to launch predefined binaries, or replace or delete arbitrary files. This vulnerability is exploitable by any unprivileged user when Avast Self-Defense is disabl...
Avast Antivirus
7.5
CVSSv3
CVE-2020-10860
An issue exists in Avast Antivirus prior to 20. An Arbitrary Memory Address Overwrite vulnerability in the aswAvLog Log Library results in Denial of Service of the Avast Service (AvastSvc.exe).
Avast Antivirus
7.5
CVSSv3
CVE-2020-10861
An issue exists in Avast Antivirus prior to 20. The aswTask RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe) allows malicious users to achieve Arbitrary File Deletion from Avast Program Path via RPC, when Self Defense is Enabled.
Avast Antivirus
7.8
CVSSv3
CVE-2020-10862
An issue exists in Avast Antivirus prior to 20. The aswTask RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe) allows malicious users to achieve Local Privilege Escalation (LPE) via RPC.
Avast Antivirus
7.5
CVSSv3
CVE-2020-10863
An issue exists in Avast Antivirus prior to 20. The aswTask RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe) allows malicious users to trigger a shutdown via RPC from a Low Integrity process via TempShutDownMachine.
Avast Antivirus
6.5
CVSSv3
CVE-2020-10864
An issue exists in Avast Antivirus prior to 20. The aswTask RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe) allows malicious users to trigger a reboot via RPC from a Low Integrity process.
Avast Antivirus
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »