457 matches found
CVE-2022-26522
The socket connection handler in aswArPot.sys in the Avast and AVG Windows Anti Rootkit driver before 22.1 allows local attackers to execute arbitrary code in kernel mode or cause a denial of service memory corruption and OS crash due to a double fetch vulnerability at aswArPot+0xc4a3...
CVE-2022-26523
The CVE-2022-26523 issue affects the Avast/AVG Anti‑Rootkit driver aswArPot.sys (Windows). It is a local, kernel‑mode vulnerability caused by a double fetch at aswArPot+0xbb94, enabling a user with limited privileges to run code at kernel level or trigger memory corruption/OS crash. Connected doc...
CVE-2022-26523
The socket connection handler in aswArPot.sys in the Avast and AVG Windows Anti Rootkit driver before 22.1 allows local attackers to execute arbitrary code in kernel mode or cause a denial of service memory corruption and OS crash due to a double fetch vulnerability at aswArPot+0xbb94...
CVE-2022-26522
The socket connection handler in aswArPot.sys in the Avast and AVG Windows Anti Rootkit driver before 22.1 allows local attackers to execute arbitrary code in kernel mode or cause a denial of service memory corruption and OS crash due to a double fetch vulnerability at aswArPot+0xc4a3...
CVE-2022-26522
CVE-2022-26522 affects Avast/AVG Anti-Rootkit driver aswArPot.sys. The socket connection handler vulnerability enables local privilege escalation to kernel mode, with potential memory corruption/OS crash via double-fetch at aswArPot+0xc4a3. Avast’s mitigations include a fix released in version 22...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: ext4: Fix for potential null dereferencing in ext4mbinit In ext4mbinit, the function ext4mbavgfragmentsizedestroy may be called when sbi-smbavgfragmentsize remains uninitialized e.g., if the groupinfo slab cache allocation fails...
Astra Linux - уязвимость в libde265
Libde265 v1.0.8 was discovered to contain a heap-buffer-overflow vulnerability via putweightedpredavg16fallback in fallback-motion.cc. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted video file...
CVE-2019-18893
XSS in the Video Downloader component before 1.5 of Avast Secure Browser 77.1.1831.91 and AVG Secure Browser 77.0.1790.77 allows websites to execute their code in the context of this component. While Video Downloader is technically a browser extension, it is granted a very wide set of privileges...
CVE-2019-18654
A Cross Site Scripting XSS issue exists in AVG AntiVirus Internet Security Edition 19.3.3084 build 19.3.4241.440 in the Network Notification Popup, allowing an attacker to execute JavaScript code via an SSID Name...
EUVD-2025-136878
Malicious code in imugay-avg-daiugjdij npm...
EUVD-2025-136858
Malicious code in imugay-avg-ijimaumfagaaugf npm...
EUVD-2025-136754
Malicious code in imugiay-avg-daiajuj npm...
EUVD-2025-136884
Malicious code in imugay-avg-daiugadajdfij npm...
EUVD-2025-136726
Malicious code in imugiay-avg-dnif npm...
EUVD-2025-136756
Malicious code in imugiay-avg-dai npm...
EUVD-2025-136758
Malicious code in imugiay-avg-dagi npm...
EUVD-2025-136738
Malicious code in imugiay-avg-di npm...
MAL-2025-182641 Malicious code in imugiay-avg-daijuj (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06d6cc67335e15d7b4460c1bfe24eb103fea29e8bcaba7e3563d417d2cc1f0bb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in imugiay-avg-dudi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f8c1bbbba434b2541adc76c118264ef08d695cb0612a3942d057c450b39b70e9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-136708
Malicious code in imugiay-avg-dudi npm...