First published: Mon Dec 27 2021(Updated: )
Multiple privilege escalation vulnerabilities in Avast Antivirus prior to 20.4 allow a local user to gain elevated privileges by calling unnecessarily powerful internal methods of the main antivirus service which could lead to the (1) arbitrary file delete, (2) write and (3) reset security.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Avast AntiVirus | <20.4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The CVE ID for this vulnerability is CVE-2021-45338.
The severity of CVE-2021-45338 is high, with a CVSS score of 7.8.
A local user can exploit CVE-2021-45338 by calling unnecessarily powerful internal methods of the main antivirus service, which could lead to arbitrary file delete, write, and reset security.
Avast Antivirus prior to version 20.4 is affected by CVE-2021-45338.
You can find more information about CVE-2021-45338 at the following references: [link1], [link2], [link3].