Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
avg vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv2
CVE-2015-8578
AVG Internet Security 2015 allocates memory with Read, Write, Execute (RWX) permissions at predictable addresses when protecting user-mode processes, which allows malicious users to bypass the DEP and ASLR protection mechanisms via unspecified vectors.
Avg Internet Security 2015
NA
CVE-2023-5760
A time-of-check to time-of-use (TOCTOU) bug in handling of IOCTL (input/output control) requests. This TOCTOU bug leads to an out-of-bounds write vulnerability which can be further exploited, allowing an malicious user to gain full local privilege escalation on the system.This is...
Avast Avg Antivirus 23.8
NA
CVE-2023-1585
Avast and AVG Antivirus for Windows were susceptible to a Time-of-check/Time-of-use (TOCTOU) vulnerability in the Quarantine process, leading to arbitrary file/directory deletion. The issue was fixed with Avast and AVG Antivirus version 22.11 and virus definitions from 14 Februar...
Avast Antivirus
Avg Anti-virus
NA
CVE-2023-1586
Avast and AVG Antivirus for Windows were susceptible to a Time-of-check/Time-of-use (TOCTOU) vulnerability in the restore process leading to arbitrary file creation. The issue was fixed with Avast and AVG Antivirus version 22.11
Avast Antivirus
Avg Anti-virus
NA
CVE-2023-1587
Avast and AVG Antivirus for Windows were susceptible to a NULL pointer dereference issue via RPC-interface. The issue was fixed with Avast and AVG Antivirus version 22.11
Avast Antivirus
Avg Anti-virus
5.8
CVSSv2
CVE-2020-8987
Avast AntiTrack prior to 1.5.1.172 and AVG Antitrack prior to 2.0.0.178 proxies traffic to HTTPS sites but does not validate certificates, and thus a man-in-the-middle can host a malicious website using a self-signed certificate. No special action necessary by the victim using An...
Avast Antitrack
Avast Avg Antitrack
1 Article
NA
CVE-2022-4173
A vulnerability within the malware removal functionality of Avast and AVG Antivirus allowed an attacker with write access to the filesystem, to escalate his privileges in certain scenarios. The issue was fixed with Avast and AVG Antivirus version 22.10.
Avast Avast
Avast Avg Antivirus
1 Github repository
4.4
CVSSv2
CVE-2019-17093
An issue exists in Avast antivirus prior to 19.8 and AVG antivirus prior to 19.8. A DLL Preloading vulnerability allows an malicious user to implant %WINDIR%\system32\wbemcomn.dll, which is loaded into a protected-light process (PPL) and might bypass some of the self-defense mech...
Avg Anti-virus
Avast Antivirus
2.1
CVSSv2
CVE-2020-13657
An elevation of privilege vulnerability exists in Avast Free Antivirus and AVG AntiVirus Free prior to 20.4 due to improperly handling hard links. The vulnerability allows local users to take control of arbitrary files.
Avast Avg Antivirus
Avast Free Antivirus
9.3
CVSSv2
CVE-2008-5530
Ewido Security Suite 4.0, when Internet Explorer 6 or 7 is used, allows remote malicious users to bypass detection of malware in an HTML document by placing an MZ header (aka "EXE info") at the beginning, and modifying the filename to have (1) no extension, (2) a .txt e...
Avg Ewido Security Suite 4.0
Ewido Ewido Security Suite 4.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »