First published: Mon Dec 27 2021(Updated: )
Privilege escalation vulnerability in the Self-Defense driver of Avast Antivirus prior to 20.8 allows a local user with SYSTEM privileges to gain elevated privileges by "hollowing" process wsc_proxy.exe which could lead to acquire antimalware (AM-PPL) protection.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Avast AntiVirus | <20.8 | |
<20.8 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-45337 is a privilege escalation vulnerability in the Self-Defense driver of Avast Antivirus prior to version 20.8.
CVE-2021-45337 allows a local user with SYSTEM privileges to gain elevated privileges by 'hollowing' process wsc_proxy.exe.
CVE-2021-45337 has a severity rating of 8.8 (high).
CVE-2021-45337 affects Avast Antivirus versions prior to 20.8.
To fix CVE-2021-45337, update Avast Antivirus to version 20.8 or later.