Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
avast avast - vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2020-10861
An issue exists in Avast Antivirus prior to 20. The aswTask RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe) allows malicious users to achieve Arbitrary File Deletion from Avast Program Path via RPC, when Self Defense is Enabled.
Avast Antivirus
7.8
CVSSv3
CVE-2020-10862
An issue exists in Avast Antivirus prior to 20. The aswTask RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe) allows malicious users to achieve Local Privilege Escalation (LPE) via RPC.
Avast Antivirus
7.5
CVSSv3
CVE-2020-10863
An issue exists in Avast Antivirus prior to 20. The aswTask RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe) allows malicious users to trigger a shutdown via RPC from a Low Integrity process via TempShutDownMachine.
Avast Antivirus
6.5
CVSSv3
CVE-2020-10864
An issue exists in Avast Antivirus prior to 20. The aswTask RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe) allows malicious users to trigger a reboot via RPC from a Low Integrity process.
Avast Antivirus
7.5
CVSSv3
CVE-2020-10866
An issue exists in Avast Antivirus prior to 20. The aswTask RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe) allows malicious users to enumerate the network interfaces and access points from a Low Integrity process via RPC.
Avast Antivirus
9.8
CVSSv3
CVE-2020-10867
An issue exists in Avast Antivirus prior to 20. The aswTask RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe) allows malicious users to bypass intended access restrictions on tasks from an untrusted process, when Self Defense is enabled.
Avast Antivirus
7.5
CVSSv3
CVE-2020-10868
An issue exists in Avast Antivirus prior to 20. The aswTask RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe) allows malicious users to launch the Repair App RPC call from a Low Integrity process.
Avast Antivirus
4.4
CVSSv3
CVE-2019-11230
In Avast Antivirus prior to 19.4, a local administrator can trick the product into renaming arbitrary files by replacing the Logs\Update.log file with a symlink. The next time the product attempts to write to the log file, the target of the symlink is renamed. This defect can be ...
Avast Antivirus
8.8
CVSSv3
CVE-2021-45337
Privilege escalation vulnerability in the Self-Defense driver of Avast Antivirus before 20.8 allows a local user with SYSTEM privileges to gain elevated privileges by "hollowing" process wsc_proxy.exe which could lead to acquire antimalware (AM-PPL) protection.
Avast Antivirus
7.8
CVSSv3
CVE-2021-45338
Multiple privilege escalation vulnerabilities in Avast Antivirus before 20.4 allow a local user to gain elevated privileges by calling unnecessarily powerful internal methods of the main antivirus service which could lead to the (1) arbitrary file delete, (2) write and (3) reset ...
Avast Antivirus
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »