PT-2023-11546 · Avast · Avast Antivirus

Published

2023-07-11

Updated

2023-07-18

CVE-2020-20118

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Avast AntiVirus versions prior to 19.7

Description A Buffer Overflow issue allows a local attacker to cause a denial of service via a crafted request to the aswSnx.sys driver. This can be exploited by sending a specifically designed request to the driver, potentially leading to a denial of service.

Recommendations For Avast AntiVirus versions prior to 19.7, update to version 19.7 or later to resolve the issue. As a temporary workaround, consider restricting access to the aswSnx.sys driver to minimize the risk of exploitation.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-120

Related Identifiers

CVE-2020-20118

Affected Products

Avast Antivirus

PT-2023-11546 · Avast · Avast Antivirus

CVE-2020-20118

Weakness Enumeration

Related Identifiers

Affected Products

References · 5