Avast antivirus
This hub aggregates every CVE we track for Avast antivirus, a product in the security products space. Use it to gauge the current risk picture and drill into individual advisories.
38
CVEs tracked
4
Critical
18
High
0
In CISA KEV
Severity distribution
HIGH18MEDIUM16CRITICAL4
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
1
0
0
0
0
1
9
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Avast antivirus.
- CVE-2025-71326AVAST Antivirus 25.11 Unquoted Service Path Privilege Escalation7.8
- CVE-2025-7019Avast antivirus stack overflow when scanning a malformed Office Open XML file5.5
- CVE-2025-7011Avast antivirus heap OOB when scanning a malformed zip file7.8
- CVE-2025-7010Avast antivirus stack overflow when scanning a malformed PDF file5.5
- CVE-2025-7009Avast antivirus heap buffer OOB read when scanning a malformed PE file7.8
- CVE-2025-7008Avast antivirus heap buffer OOB read when scanning a malformed PE file7.8
- CVE-2025-7006Avast antivirus use of stack memory after free when scanning a malformed PE file5.5
- CVE-2025-7005Avast antivirus infinite recursion when scanning a malformed PE file5.5
- CVE-2025-7004Avast antivirus heap buffer OOB write when scanning a malformed PE file7.8
- CVE-2022-26522The socket connection handler in aswArPot.sys in the Avast and AVG Windows Anti Rootkit driver before 22.1 allows local attackers to execute arbitrary code in kernel mode or cause a denial of servi...7.8
- CVE-2025-10101Avast antivirus heap buffer OOB read when scanning a malformed Mach-O file7.8
- CVE-2023-1587Avast and AVG Antivirus for Windows were susceptible to a NULL pointer dereference issue via RPC-interface. The issue was fixed with Avast and AVG Antivirus version 22.115.8
- CVE-2023-1586Avast and AVG Antivirus for Windows were susceptible to a Time-of-check/Time-of-use (TOCTOU) vulnerability in the restore process leading to arbitrary file creation. The issue was fixed with Avast...6.5
- CVE-2023-1585Avast and AVG Antivirus for Windows were susceptible to a Time-of-check/Time-of-use (TOCTOU) vulnerability in the Quarantine process, leading to arbitrary file/directory deletion. The issue was fi...6.5
- CVE-2022-4294Norton, Avira, Avast and AVG Antivirus for Windows Privilege Escalation7.1
Product normalization is registry-driven with AI assist and human review. How it works