First published: Wed Apr 01 2020(Updated: )
An issue was discovered in Avast Antivirus before 20. The aswTask RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe) allows attackers to trigger a reboot via RPC from a Low Integrity process.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Avast AntiVirus | <20.0 | |
Microsoft Windows |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID of this issue is CVE-2020-10864.
The affected software is Avast AntiVirus version up to 20.0.
This vulnerability has a severity value of 6.5 (medium).
An attacker can exploit this vulnerability by triggering a reboot via Remote Procedure Call (RPC) from a Low Integrity process.
Yes, Avast Antivirus version 20.0 or higher is not affected by this vulnerability.