Privilege Escalation Vulnerabilities in Avast Antivirus: Arbitrary File Manipulation and Security Reset

Privilege Escalation Vulnerabilities in Avast Antivirus: Arbitrary File Manipulation and Security Reset

CVE-2021-45338 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Multiple privilege escalation vulnerabilities in Avast Antivirus prior to 20.4 allow a local user to gain elevated privileges by calling unnecessarily powerful internal methods of the main antivirus service which could lead to the (1) arbitrary file delete, (2) write and (3) reset security.

Learn more about our Internal Network Penetration Testing.