Known Vulnerabilities for products from Avast
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Avast".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-5760 json | A time-of-check to time-of-use (TOCTOU) bug in handling of IOCTL (input/output control) requests. This TOCTOU bug leads to an... | 7 - HIGH | 2023-11-08 | 2023-11-16 |
| CVE-2023-1587 json | Avast and AVG Antivirus for Windows were susceptible to a NULL pointer dereference issue via RPC-interface. The issue was fix... | 5.5 - MEDIUM | 2023-04-19 | 2023-04-29 |
| CVE-2023-1586 json | Avast and AVG Antivirus for Windows were susceptible to a Time-of-check/Time-of-use (TOCTOU) vulnerability in the restore pr... | 4.7 - MEDIUM | 2023-04-19 | 2023-05-01 |
| CVE-2023-1585 json | Avast and AVG Antivirus for Windows were susceptible to a Time-of-check/Time-of-use (TOCTOU) vulnerability in the Quarantine... | 6.3 - MEDIUM | 2023-04-19 | 2023-05-01 |
| CVE-2022-28965 json | Multiple DLL hijacking vulnerabilities via the components instup.exe and wsc_proxy.exe in Avast Premium Security before v21.1... | 6.5 - MEDIUM | 2022-05-20 | 2023-08-08 |
| CVE-2022-28964 json | An arbitrary file write vulnerability in Avast Premium Security before v21.11.2500 (build 21.11.6809.528) allows attackers to... | 7.1 - HIGH | 2022-05-20 | 2022-06-02 |
| CVE-2022-4294 json | Norton, Avira, Avast and AVG Antivirus for Windows may be susceptible to a Privilege Escalation vulnerability, which is a typ... | 7.8 - HIGH | 2023-01-10 | 2023-11-07 |
| CVE-2022-4291 json | The aswjsflt.dll library from Avast Antivirus windows contained a potentially exploitable heap corruption vulnerability that ... | 10 - CRITICAL | 2022-12-08 | 2023-11-07 |
| CVE-2022-4173 json | A vulnerability within the malware removal functionality of Avast and AVG Antivirus allowed an attacker with write access to ... | 8.8 - HIGH | 2022-12-06 | 2023-11-07 |
| CVE-2021-45339 json | Privilege escalation vulnerability in Avast Antivirus prior to 20.4 allows a local user to gain elevated privileges by "hollo... | 7.8 - HIGH | 2021-12-27 | 2022-07-12 |
| CVE-2021-45338 json | Multiple privilege escalation vulnerabilities in Avast Antivirus prior to 20.4 allow a local user to gain elevated privileges... | 7.8 - HIGH | 2021-12-27 | 2022-07-12 |
| CVE-2021-45337 json | Privilege escalation vulnerability in the Self-Defense driver of Avast Antivirus prior to 20.8 allows a local user with SYSTE... | 8.8 - HIGH | 2021-12-27 | 2022-07-12 |
| CVE-2021-45336 json | Privilege escalation vulnerability in the Sandbox component of Avast Antivirus prior to 20.4 allows a local sandboxed code to... | 8.8 - HIGH | 2021-12-27 | 2022-07-12 |
| CVE-2021-45335 json | Sandbox component in Avast Antivirus prior to 20.4 has an insecure permission which could be abused by local user to control ... | 8.8 - HIGH | 2021-12-27 | 2022-01-07 |
| CVE-2021-27241 json | This vulnerability allows local attackers to delete arbitrary directories on affected installations of Avast Premium Security... | 6.1 - MEDIUM | 2021-03-29 | 2021-04-01 |
| CVE-2020-25289 json | The VPN service in AVAST SecureLine before 5.6.4982.470 allows local users to write to arbitrary files via an Object Manager ... | 5.5 - MEDIUM | 2020-09-13 | 2020-09-17 |
| CVE-2020-23907 json | An issue was discovered in retdec v3.3. In function canSplitFunctionOn() of ir_modifications.cpp, there is a possible out of ... | 9.8 - CRITICAL | 2021-04-21 | 2021-04-26 |
| CVE-2020-20118 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.5 - MEDIUM | 2023-07-11 | 2023-07-18 |
| CVE-2020-15024 json | An issue was discovered in the Login Password feature of the Password Manager component in Avast Antivirus 20.1.5069.562. An ... | 5.5 - MEDIUM | 2020-09-10 | 2021-07-21 |
| CVE-2020-13657 json | An elevation of privilege vulnerability exists in Avast Free Antivirus and AVG AntiVirus Free before 20.4 due to improperly h... | 5.5 - MEDIUM | 2020-06-29 | 2021-07-21 |
Known software with vulnerabilities from Avast
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Avast | Antitrack | - |
| Application | Avast | Antivirus | 12.1.2272 |
| Application | Avast | Antivirus For Linux | 12.0 |
| Application | Avast | Antivirus Pro | 12.0 |
| Application | Avast | Antivirus Pro Plus | 12.0 |
| Application | Avast | Avast | - |
| Application | Avast | Avast! Mobile Security | 2.0.4304 |
| Application | Avast | Avast Antivirus Free | 5.0.594 |
| Application | Avast | Avast Free Antivirus | 11.1.2245 |
| Application | Avast | Avast Internet Security | 11.1.2245 |
| Application | Avast | Avast Premier | 11.1.2245 |
| Application | Avast | Avast Pro Antivirus | 11.1.2245 |
| Application | Avast | Avg Antitrack | - |
| Application | Avast | Avg Antivirus | 20.4 |
| Application | Avast | Business Security | 11.1.2241 |
| Application | Avast | Email Server Security | 8.0.1606 |
| Application | Avast | Endpoint Protection | 8.0.1606 |
| Application | Avast | Endpoint Protection Plus | 8.0.1606 |
| Application | Avast | Endpoint Protection Suite | 8.0.1606 |
| Application | Avast | Endpoint Protection Suite Plus | 8.0.1606 |