23 matches found
EUVD-2025-210124
Heap buffer out-of-bounds write vulnerability in Avast Antivirus when scanning a malformed Windows PE file may allow Local Execution of Code or Denial-of-Service of the antivirus process. This issue affects Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus ...
EUVD-2025-210128
Heap buffer out-of-bounds read vulnerability in Avast Antivirus when scanning a malformed Windows PE file may allow Local Execution of Code or Denial-of-Service of the antivirus process. This issue affects Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus o...
CVE-2025-7019
Stack overflow vulnerability in Avast Antivirus when scanning a malformed Office Open XML file may allow Denial-of-Service of the antivirus process. This issue affects Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus on Windows, macOS, and Linux for virus...
CVE-2025-7005
Uncontrolled recursion vulnerability in Avast Antivirus when scanning a malformed Windows PE file may allow Denial-of-Service of the antivirus process. This issue affects Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus on Windows, macOS, and Linux for vir...
CVE-2025-7011
This CVE-2025-7011 describes a heap out-of-bounds read in the Avast Gen Digital antivirus engine when processing a malformed ZIP containing XML, potentially enabling local code execution or antivirus process denial-of-service. Affected products include Avast Antivirus, AVG Antivirus, Norton Antiv...
CVE-2025-7011 Avast antivirus heap OOB when scanning a malformed zip file
Heap out-of-bounds read vulnerability in Avast Antivirus when scanning a malformed zip file containing XML may allow Local Execution of Code or Denial-of-Service of the antivirus process. This issue affects Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus ...
CVE-2025-7010
CVE-2025-7010 describes a stack overflow vulnerability (uncontrolled recursion) in Avast’s scanning engine when processing a malformed PDF, leading to Denial‑of‑Service of the antivirus process. Affected products include Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Busin...
CVE-2025-7006 Avast antivirus use of stack memory after free when scanning a malformed PE file
Use of stack memory after free vulnerability in Avast Antivirus when scanning a malformed Windows PE file may allow Denial-of-Service of the antivirus process. This issue affects Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus on Windows, macOS, and Linux...
CVE-2025-7006 Avast antivirus use of stack memory after free when scanning a malformed PE file
Use of stack memory after free vulnerability in Avast Antivirus when scanning a malformed Windows PE file may allow Denial-of-Service of the antivirus process. This issue affects Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus on Windows, macOS, and Linux...
CVE-2025-7004 Avast antivirus heap buffer OOB write when scanning a malformed PE file
Heap buffer out-of-bounds write vulnerability in Avast Antivirus when scanning a malformed Windows PE file may allow Local Execution of Code or Denial-of-Service of the antivirus process. This issue affects Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus ...
PT-2026-49013
Name of the Vulnerable Software and Affected Versions Avast Antivirus versions prior to VPS 25021310 AVG Antivirus versions prior to VPS 25021310 Norton Antivirus versions prior to VPS 25021310 Avast One versions prior to VPS 25021310 Avast Business Antivirus versions prior to VPS 25021310...
PT-2026-49011
Name of the Vulnerable Software and Affected Versions Avast Antivirus versions prior to VPS 25031700 AVG Antivirus versions prior to VPS 25031700 Norton Antivirus versions prior to VPS 25031700 Avast One versions prior to VPS 25031700 Avast Business Antivirus versions prior to VPS 25031700...
PT-2026-49019
Name of the Vulnerable Software and Affected Versions Avast Antivirus versions prior to VPS 25020100 AVG Antivirus versions prior to VPS 25020100 Norton Antivirus versions prior to VPS 25020100 Avast One versions prior to VPS 25020100 Avast Business Antivirus versions prior to VPS 25020100...
PT-2026-49015
Name of the Vulnerable Software and Affected Versions Avast Antivirus versions prior to VPS 25021208 AVG Antivirus versions prior to VPS 25021208 Norton Antivirus versions prior to VPS 25021208 Avast One versions prior to VPS 25021208 Avast Business Antivirus versions prior to VPS 25021208...
Gen Digital Norton Secure VPN 安全漏洞
Gen Digital Norton Secure VPN is a virtual private network service provided by the American company Gen Digital. There is a security vulnerability in Gen Digital Norton Secure VPN, which stems from permission escalation during the installation process through the Microsoft Store. Low-privilege...
Gen Digital Antivirus 安全漏洞
Gen Digital Antivirus is an antivirus software from Gen Digital, Inc. A security vulnerability exists in Gen Digital Antivirus versions prior to 25.3, which stems from a double-acquisition issue in the Windows Sandbox kernel driver that could lead to a local attacker achieving elevation of...
Gen Digital Free Antivirus 安全漏洞
Gen Digital Free Antivirus is an antivirus software from Gen Digital, Inc. A security vulnerability exists in Gen Digital Free Antivirus versions prior to 25.9, which stems from a conflict in the MiniFilter driver that could cause a local attacker to disable real-time protection and self-defense...
Gen Digital CCleaner 安全漏洞
Gen Digital CCleaner is a system optimization and cleanup tool from Gen Digital USA. A security vulnerability exists in Gen Digital CCleaner versions prior to 6.36.11508, which stems from an unsafe file deletion operation in the cleanup function that could lead to a local user gaining SYSTEM...
CVE-2024-13962
CVE-2024-13962 affects Avast Cleanup Premium (Gen Digital) using TuneupSvc on Windows 10 Pro x64. A local privilege escalation exists via creating a symbolic link and TOCTTOU timing, enabling an attacker with low privileges to escalate to SYSTEM and potentially execute arbitrary code. Affected ve...
Gen Digital AVG TuneUp 安全漏洞
Gen Digital AVG TuneUp is a professional PC optimization tool from Gen Digital, Inc. that provides system cleanup, performance acceleration and automated maintenance. A security vulnerability exists in Gen Digital AVG TuneUp version 23.4, which stems from a mishandling of symbolic links in the...