CVE-2024-9524: Privilege Escalation Vulnerability in Avira Prime Version 1.1.96.2
First published: Fri May 09 2025(Updated: )
Link Following Local Privilege Escalation Vulnerability in System Speedup Service in Avira Operations GmbH Avira Prime Version 1.1.96.2 on Windows 10 x64 allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM via creating a symbolic link and leveraging a TOCTTOU (time-of-check to time-of-use) attack.
Credit: security@nortonlifelock.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Avira Prime |
Remedy
Fix released 03/Dec/2024, upgrade to the latest version.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2024-9524?
CVE-2024-9524 is classified as a high-severity local privilege escalation vulnerability.
How do I fix CVE-2024-9524?
To remediate CVE-2024-9524, update to the latest version of Avira Prime that addresses this vulnerability.
Who is affected by CVE-2024-9524?
CVE-2024-9524 affects users of Avira Prime Version 1.1.96.2 on Windows 10 x64.
What are the consequences of exploiting CVE-2024-9524?
Exploiting CVE-2024-9524 allows local attackers to escalate privileges and execute arbitrary code in the context of the SYSTEM user.
How is CVE-2024-9524 exploited?
CVE-2024-9524 can be exploited by creating a symbolic link to manipulate file permissions and escalate privileges.
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/title
- agent/references
- agent/remedy
- agent/type
- agent/description
- agent/first-publish-date
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/last-modified-date
- agent/severity
- agent/author
- agent/source
- agent/tags
- agent/event
- vendor/avira operations gmbh
- canonical/avira prime