CVE-2020-13657
First published: Mon Jun 29 2020(Updated: )
An elevation of privilege vulnerability exists in Avast Free Antivirus and AVG AntiVirus Free before 20.4 due to improperly handling hard links. The vulnerability allows local users to take control of arbitrary files.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Avast Avg Antivirus | <20.4 | |
| Avast Free Antivirus | <20.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this issue?
The vulnerability ID is CVE-2020-13657.
What is the affected software?
The affected software includes Avast Free Antivirus and AVG AntiVirus Free before version 20.4.
What is the severity of CVE-2020-13657?
The severity of CVE-2020-13657 is medium with a CVSS score of 5.5.
How does this vulnerability allow local users to take control of arbitrary files?
This vulnerability exists due to improperly handling hard links, which allows local users to take control of arbitrary files.
How can I fix this vulnerability?
To fix this vulnerability, update Avast Free Antivirus and AVG AntiVirus Free to version 20.4 or later.
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/author
- agent/severity
- agent/first-publish-date
- agent/tags
- agent/description
- agent/event
- vendor/avast
- canonical/avast avg antivirus
- canonical/avast free antivirus