DLL Side-Loading Vulnerability in Avira Software Updater

DLL Side-Loading Vulnerability in Avira Software Updater

CVE-2019-17449 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Avira Software Updater before 2.0.6.21094 allows a DLL side-loading attack. NOTE: The vendor thinks that this vulnerability is invalid because exploiting it would require at least administrator privileges and would gain only SYSTEM privileges

Learn more about our Web Application Penetration Testing UK.