Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
avast vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2020-10863
An issue exists in Avast Antivirus prior to 20. The aswTask RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe) allows malicious users to trigger a shutdown via RPC from a Low Integrity process via TempShutDownMachine.
Avast Antivirus
6.5
CVSSv3
CVE-2020-10864
An issue exists in Avast Antivirus prior to 20. The aswTask RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe) allows malicious users to trigger a reboot via RPC from a Low Integrity process.
Avast Antivirus
7.5
CVSSv3
CVE-2020-10866
An issue exists in Avast Antivirus prior to 20. The aswTask RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe) allows malicious users to enumerate the network interfaces and access points from a Low Integrity process via RPC.
Avast Antivirus
7.5
CVSSv3
CVE-2020-10868
An issue exists in Avast Antivirus prior to 20. The aswTask RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe) allows malicious users to launch the Repair App RPC call from a Low Integrity process.
Avast Antivirus
9.8
CVSSv3
CVE-2017-8307
In Avast Antivirus before v17, using the LPC interface API exposed by the AvastSVC.exe Windows service, it is possible to launch predefined binaries, or replace or delete arbitrary files. This vulnerability is exploitable by any unprivileged user when Avast Self-Defense is disabl...
Avast Antivirus
8.8
CVSSv3
CVE-2021-45335
Sandbox component in Avast Antivirus before 20.4 has an insecure permission which could be abused by local user to control the outcome of scans, and therefore evade detection or delete arbitrary system files.
Avast Antivirus
8.8
CVSSv3
CVE-2021-45336
Privilege escalation vulnerability in the Sandbox component of Avast Antivirus before 20.4 allows a local sandboxed code to gain elevated privileges by using system IPC interfaces which could lead to exit the sandbox and acquire SYSTEM privileges.
Avast Antivirus
8.8
CVSSv3
CVE-2021-45337
Privilege escalation vulnerability in the Self-Defense driver of Avast Antivirus before 20.8 allows a local user with SYSTEM privileges to gain elevated privileges by "hollowing" process wsc_proxy.exe which could lead to acquire antimalware (AM-PPL) protection.
Avast Antivirus
7.8
CVSSv3
CVE-2021-45338
Multiple privilege escalation vulnerabilities in Avast Antivirus before 20.4 allow a local user to gain elevated privileges by calling unnecessarily powerful internal methods of the main antivirus service which could lead to the (1) arbitrary file delete, (2) write and (3) reset ...
Avast Antivirus
7.8
CVSSv3
CVE-2021-45339
Privilege escalation vulnerability in Avast Antivirus before 20.4 allows a local user to gain elevated privileges by "hollowing" trusted process which could lead to the bypassing of Avast self-defense.
Avast Antivirus
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »