EUVD-2025-210128

Heap buffer out-of-bounds read vulnerability in Avast Antivirus when scanning a malformed Windows PE file may allow Local Execution of Code or Denial-of-Service of the antivirus process. This issue affects Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus o...

EUVD-2025-210124

Heap buffer out-of-bounds write vulnerability in Avast Antivirus when scanning a malformed Windows PE file may allow Local Execution of Code or Denial-of-Service of the antivirus process. This issue affects Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus ...

CVE-2025-7019

Stack overflow vulnerability in Avast Antivirus when scanning a malformed Office Open XML file may allow Denial-of-Service of the antivirus process. This issue affects Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus on Windows, macOS, and Linux for virus...

CVE-2025-7005

Uncontrolled recursion vulnerability in Avast Antivirus when scanning a malformed Windows PE file may allow Denial-of-Service of the antivirus process. This issue affects Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus on Windows, macOS, and Linux for vir...

CVE-2025-7006 Avast antivirus use of stack memory after free when scanning a malformed PE file

Use of stack memory after free vulnerability in Avast Antivirus when scanning a malformed Windows PE file may allow Denial-of-Service of the antivirus process. This issue affects Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus on Windows, macOS, and Linux...

PT-2026-49019

Stack overflow vulnerability in Avast Antivirus when scanning a malformed Office Open XML file may allow Denial-of-Service of the antivirus process. This issue affects Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus on Windows, macOS, and Linux for virus...

PT-2026-49015

Stack overflow vulnerability due to uncontrolled recursion in Avast Antivirus when scanning a malformed PDF file may allow Denial-of-Service of the antivirus process. This issue affects Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus on Windows, macOS, an...

PT-2026-49011

Uncontrolled recursion vulnerability in Avast Antivirus when scanning a malformed Windows PE file may allow Denial-of-Service of the antivirus process. This issue affects Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus on Windows, macOS, and Linux for vir...

PT-2026-49013

Heap buffer out-of-bounds read vulnerability in Avast Antivirus when scanning a malformed Windows PE file with .NET metadata may allow Local Execution of Code or Denial-of-Service of the antivirus process. This issue affects Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast...

Gen Digital Norton Secure VPN 安全漏洞

Gen Digital Norton Secure VPN is a virtual private network service provided by the American company Gen Digital. There is a security vulnerability in Gen Digital Norton Secure VPN, which stems from permission escalation during the installation process through the Microsoft Store. Low-privilege...

Gen Digital Antivirus 安全漏洞

Gen Digital Antivirus is an antivirus software from Gen Digital, Inc. A security vulnerability exists in Gen Digital Antivirus versions prior to 25.3, which stems from a double-acquisition issue in the Windows Sandbox kernel driver that could lead to a local attacker achieving elevation of...

Gen Digital Free Antivirus 安全漏洞

Gen Digital Free Antivirus is an antivirus software from Gen Digital, Inc. A security vulnerability exists in Gen Digital Free Antivirus versions prior to 25.9, which stems from a conflict in the MiniFilter driver that could cause a local attacker to disable real-time protection and self-defense...

Gen Digital CCleaner 安全漏洞

Gen Digital CCleaner is a system optimization and cleanup tool from Gen Digital USA. A security vulnerability exists in Gen Digital CCleaner versions prior to 6.36.11508, which stems from an unsafe file deletion operation in the cleanup function that could lead to a local user gaining SYSTEM...

CVE-2024-13962

CVE-2024-13962 affects Avast Cleanup Premium (Gen Digital) using TuneupSvc on Windows 10 Pro x64. A local privilege escalation exists via creating a symbolic link and TOCTTOU timing, enabling an attacker with low privileges to escalate to SYSTEM and potentially execute arbitrary code. Affected ve...

Gen Digital AVG TuneUp 安全漏洞

Gen Digital AVG TuneUp is a professional PC optimization tool from Gen Digital, Inc. that provides system cleanup, performance acceleration and automated maintenance. A security vulnerability exists in Gen Digital AVG TuneUp version 24.2.16593.9844, which stems from a mishandling of symbolic link...

Gen Digital Avast Cleanup Premium 安全漏洞

Gen Digital Avast Cleanup Premium is an advanced PC cleanup and optimization tool from Gen Digital, Inc. with deep junk cleaning and automated maintenance features. A security vulnerability exists in Gen Digital Avast Cleanup Premium version 24.2.16593.17810, which stems from a mishandling of...

Gen Digital AVG TuneUp 安全漏洞

Gen Digital AVG TuneUp is a professional PC optimization tool from Gen Digital, Inc. that provides system cleanup, performance acceleration and automated maintenance. A security vulnerability exists in Gen Digital AVG TuneUp version 23.4, which stems from a mishandling of symbolic links in the...

Microsoft Patches Zero-Day Flaw Exploited by North Korea's Lazarus Group

A newly patched security flaw in Microsoft Windows was exploited as a zero-day by Lazarus Group, a prolific state-sponsored actor affiliated with North Korea. The security vulnerability, tracked as CVE-2024-38193 CVSS score: 7.8, has been described as a privilege escalation bug in the Windows...