CVE-2020-12680

Name of the Vulnerable Software and Affected Versions Avira Free Antivirus versions 15.0.2005.1866 and earlier

Description The issue allows local users to discover user credentials. The functions of the executable file Avira.PWM.NativeMessaging.exe are aimed at collecting credentials stored in Chrome, Firefox, Opera, and Edge. The executable does not verify the calling program, thus a request such as fetchChromePasswords or fetchCredentials will succeed.

Recommendations For Avira Free Antivirus versions 15.0.2005.1866 and earlier, as a temporary workaround, consider disabling the Avira.PWM.NativeMessaging.exe executable until a patch is available. Restrict access to the fetchChromePasswords and fetchCredentials requests to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.