CVE-2020-13657

An elevation of privilege vulnerability exists in Avast Free Antivirus and AVG AntiVirus Free before 20.4 due to improperly handling hard links. The vulnerability allows local users to take control of arbitrary files.

Published: Jun 29, 2020
Updated: Apr 13, 2023
CVE: CVE-2020-13657
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.5
AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

CVSS v2:

Severity: Low
Score: 2.1
AV:L/AC:L/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
avast / avg_antivirus	-	20.4
avast / free_antivirus	-	20.4

https://forum.avast.com/index.php?topic=232423.0
https://forum.avast.com/index.php?topic=234638.0

Vulnerability Database

289,697

CVE-2020-13657