CVE-2022-4173

A vulnerability within the malware removal functionality of Avast and AVG Antivirus allowed an attacker with write access to the filesystem, to escalate his privileges in certain scenarios. The issue was fixed with Avast and AVG Antivirus version 22.10.

Published: Dec 6, 2022
Updated: Nov 8, 2023
CVE: CVE-2022-4173
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.8
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-269

Affected Software
References

Software	From	Fixed in
avast / avast	20.5	22.9.x
avast / avg_antivirus	20.5	22.9.x

https://support.norton.com/sp/static/external/tools/security-advisories.html

Vulnerability Database

289,871

CVE-2022-4173