What is the severity of CVE-2024-9482?

CVE-2024-9482 is classified as a high severity vulnerability due to its potential to cause application crashes.

How do I fix CVE-2024-9482?

To mitigate CVE-2024-9482, ensure you update your AVG or Avast Antivirus software to the latest version beyond 24092400.

What systems are affected by CVE-2024-9482?

CVE-2024-9482 affects AVG and Avast Antivirus applications on MacOS prior to version 24092400.

What kind of attack does CVE-2024-9482 facilitate?

CVE-2024-9482 facilitates a denial-of-service attack by crashing the antivirus application when processing malformed Mach-O files.

Is there a known exploit for CVE-2024-9482?

As of now, there are no publicly known exploits specifically targeting CVE-2024-9482, but the vulnerability poses a significant risk.

Vulnerability/
CVE-2024-9482

medium

5.5

CWE

787

EPSS

0.043%

4/10/2024

8/11/2024

CVE-2024-9482: Out of Bounds write on scan of malformed Mach-O file may crash the application

First published: Fri Oct 04 2024(Updated: )

An out-of-bounds write in the engine module in AVG/Avast Antivirus signature <24092400 released on 24/Sep/2024 on MacOS allows a malformed Mach-O file to crash the application during file processing.

Credit: security@nortonlifelock.com

Affected Software	Affected Version	How to fix
Avast Antivirus for MacOS	<24092400
AVG Antivirus for MacOS	<24092400

Remedy

Upgrade to the latest version of virus definintions.

Never miss a vulnerability like this again

Reference Links

https://support.norton.com/sp/static/external/tools/security-advisories.html

Frequently Asked Questions

What is the severity of CVE-2024-9482?
CVE-2024-9482 is classified as a high severity vulnerability due to its potential to cause application crashes.
How do I fix CVE-2024-9482?
To mitigate CVE-2024-9482, ensure you update your AVG or Avast Antivirus software to the latest version beyond 24092400.
What systems are affected by CVE-2024-9482?
CVE-2024-9482 affects AVG and Avast Antivirus applications on MacOS prior to version 24092400.
What kind of attack does CVE-2024-9482 facilitate?
CVE-2024-9482 facilitates a denial-of-service attack by crashing the antivirus application when processing malformed Mach-O files.
Is there a known exploit for CVE-2024-9482?
As of now, there are no publicly known exploits specifically targeting CVE-2024-9482, but the vulnerability poses a significant risk.

agent/remedy
agent/title
agent/references
agent/weakness
agent/description
agent/first-publish-date
agent/type
agent/author
agent/event
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/severity
agent/trending
agent/epss
collector/epss-latest
source/FIRST
agent/source
agent/tags
agent/softwarecombine
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/avast
canonical/avast antivirus for macos
vendor/avg
canonical/avg antivirus for macos

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.