CPE-020639A7-22AE-41F2-AFC0-A32C2B59A8C3 Detail

CPE Details

Avast Antivirus 22.5

Vendor

avast

Product

antivirus

Version

22.5

Created

2023-04-26
12h57 +00:00

Modified

2023-09-09
01h46 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:avast:antivirus:22.5:::::::*

Informations

Vendor

avast

Product

antivirus

Version

22.5

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2024-5102	2024-06-10 16h15 +00:00	A sym-linked file accessed via the repair function in Avast Antivirus <24.2 on Windows may allow user to elevate privilege to delete arbitrary files or run processes as NT AUTHORITY\SYSTEM. The vulnerability exists within the "Repair" (settings -> troubleshooting -> repair) feature, which attempts to delete a file in the current user's AppData directory as NT AUTHORITY\SYSTEM. A low-privileged user can make a pseudo-symlink and a junction folder and point to a file on the system. This can provide a low-privileged user an Elevation of Privilege to win a race-condition which will re-create the system files and make Windows callback to a specially-crafted file which could be used to launch a privileged shell instance. This issue affects Avast Antivirus prior to 24.2.	7.3	High
CVE-2023-1587	2023-04-19 18h39 +00:00	Avast and AVG Antivirus for Windows were susceptible to a NULL pointer dereference issue via RPC-interface. The issue was fixed with Avast and AVG Antivirus version 22.11	5.8	Medium
CVE-2023-1586	2023-04-19 18h35 +00:00	Avast and AVG Antivirus for Windows were susceptible to a Time-of-check/Time-of-use (TOCTOU) vulnerability in the restore process leading to arbitrary file creation. The issue was fixed with Avast and AVG Antivirus version 22.11	6.5	Medium
CVE-2023-1585	2023-04-19 18h27 +00:00	Avast and AVG Antivirus for Windows were susceptible to a Time-of-check/Time-of-use (TOCTOU) vulnerability in the Quarantine process, leading to arbitrary file/directory deletion. The issue was fixed with Avast and AVG Antivirus version 22.11 and virus definitions from 14 February 2023 or later.	6.5	Medium
CVE-2022-4294	2023-01-10 09h14 +00:00	Norton, Avira, Avast and AVG Antivirus for Windows may be susceptible to a Privilege Escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user.	7.8	High

Avast Antivirus 22.5

CPE Details

CPE Name: cpe:2.3:a:avast:antivirus:22.5:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:avast:antivirus:22.5:::::::*