CVE-2024-9482

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions AVG/Avast Antivirus versions prior to signature 24092400

Description The issue is related to an out-of-bounds write in the engine module of AVG/Avast Antivirus, which can be triggered by a malformed Mach-O file. This can cause the application to crash during file processing.

Recommendations For versions prior to signature 24092400, update the antivirus signature to a version equal to or later than 24092400 to resolve the issue. As a temporary workaround, consider restricting the processing of Mach-O files until the update is applied.

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

CVE-2024-9482

Affected Products

Avg/Avast Antivirus

CVE-2024-9482

Weakness Enumeration

Related Identifiers

Affected Products

References · 6