Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

AVAST — Vulnerabilities & Security Advisories 24

Browse all 24 CVE security advisories affecting AVAST. AI-powered Chinese analysis, POCs, and references for each vulnerability.

AVAST operates primarily as a provider of consumer cybersecurity software, offering antivirus protection, network security tools, and privacy utilities to millions of users globally. Its extensive software portfolio, which includes desktop applications and browser extensions, has historically been susceptible to a variety of vulnerability classes, including remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws. These weaknesses often stem from complex codebases and third-party dependencies within its endpoint protection agents. Notable security incidents include the 2020 data breach where user data from its subsidiary, Jumpshot, was exposed, raising significant privacy concerns. With 24 recorded CVEs, the company faces ongoing challenges in maintaining robust security hygiene across its diverse product ecosystem, requiring continuous patching and rigorous code audits to mitigate risks associated with its widespread deployment in consumer environments.

Top products by AVAST: Antivirus Cleanup Premium Free Antivirus Avast Antivirus Premium Security Avast Business Antivirus (Free/Premiium/Ultimeat) Antivirus AVAST SecureLine
CVE IDTitleCVSSSeverityPublished
CVE-2020-37037 AVAST SecureLine 5.5.522.0 - 'SecureLine' Unquoted Service Path — AVAST SecureLineCWE-428 7.8 High2026-02-01
CVE-2025-7007 Null pointer dereference in Avast Antivirus on macOS (16.0.0) or Linux (3.0.3) — AntivirusCWE-476 7.5 High2025-12-01
CVE-2025-3500 Integer Overflow in Avast Antiviurs 25.1.981.6 on Windows may result in privilege escalation — AntivirusCWE-190 9.0 Critical2025-12-01
CVE-2025-8351 Scanning a malformed file in Avast Antivirus 8.3.70.94 on MacOS may result in remote code execution — AntivirusCWE-122 9.0 Critical2025-12-01
CVE-2025-10101 Crafted Mach-O file may allow Remote Code Execution in Avast Antivirus 15.7 on MacOS — AntivirusCWE-122 8.1 High2025-12-01
CVE-2025-13032 Gen Digital Antivirus 安全漏洞 — (Free/Premiium/Ultimeat) AntivirusCWE-367 9.9 Critical2025-11-11
CVE-2025-10905 Collision in minifilter driver of Avast Free Antivirus results in disabling of real-time protection — Free AntivirusCWE-693 4.4 Medium2025-11-11
CVE-2025-4134 Lack of file validation in Avast Business Antivirus for Linux allows writing untrusted update files — Avast Business AntivirusCWE-552 7.3 High2025-05-28
CVE-2024-13962 Link Following Local Privilege Escalation Vulnerability in Avast Cleanup Premium Version 24.2.16593.17810 — CleanUp PremiumCWE-59 7.8 High2025-05-09
CVE-2024-13961 Avast Cleanup Premium TuneupSvc Link Following Local Privilege Escalation Vulnerability — CleanUp PremiumCWE-59 7.8 High2025-05-09
CVE-2024-7233 Avast Free Antivirus AvastSvc Link Following Local Privilege Escalation Vulnerability — Free AntivirusCWE-59 7.8 -2024-11-22
CVE-2024-7232 Avast Free Antivirus AvastSvc Link Following Local Privilege Escalation Vulnerability — Free AntivirusCWE-59 7.8 -2024-11-22
CVE-2024-7227 Avast Free Antivirus AvastSvc Link Following Local Privilege Escalation Vulnerability — Free AntivirusCWE-59 7.8 -2024-11-22
CVE-2024-7229 Avast Cleanup Premium Link Following Local Privilege Escalation Vulnerability — Cleanup PremiumCWE-59 7.8 -2024-11-22
CVE-2024-7231 Avast Cleanup Premium Link Following Local Privilege Escalation Vulnerability — Cleanup PremiumCWE-59 7.8 -2024-11-22
CVE-2024-7230 Avast Cleanup Premium Link Following Local Privilege Escalation Vulnerability — Cleanup PremiumCWE-59 7.8 -2024-11-22
CVE-2024-7228 Avast Free Antivirus Link Following Denial-of-Service Vulnerability — Free AntivirusCWE-59 5.5 -2024-11-22
CVE-2024-5102 Elevation of Privelage via symlinked file in Avast Antivirus — AntivirusCWE-1284 7.8 -2024-06-10
CVE-2023-42125 Avast Premium Security Sandbox Protection Link Following Privilege Escalation Vulnerability — Premium SecurityCWE-706 7.8 -2024-05-03
CVE-2023-42124 Avast Premium Security Sandbox Protection Incorrect Authorization Privilege Escalation Vulnerability — Premium SecurityCWE-863 7.8 -2024-05-03
CVE-2023-1587 AVG Technologies AVG Antivirus 代码问题漏洞 — Avast AntivirusCWE-476 5.8 Medium2023-04-19
CVE-2023-1586 AVG Technologies AVG Antivirus 安全漏洞 — Avast AntivirusCWE-367 6.5 Medium2023-04-19
CVE-2023-1585 AVG Technologies AVG Antivirus 安全漏洞 — Avast AntivirusCWE-367 6.5 Medium2023-04-19
CVE-2021-27241 Avast Premium Security 后置链接漏洞 — Premium SecurityCWE-59 6.1 -2021-03-29

This page lists every published CVE security advisory associated with AVAST. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.