Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2023-1585

Avast and AVG Antivirus for Windows were susceptible to a Time-of-check/Time-of-use (TOCTOU) vulnerability in the Quarantine process, leading to arbitrary file/directory deletion. The issue was fixed with Avast and AVG Antivirus version 22.11 and virus definitions from 14 February 2023 or later.

  • Published: Apr 19, 2023
  • Updated: May 2, 2023
  • CVE: CVE-2023-1585
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 6.3
  • AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H

CWEs:

Software From Fixed in
avast / antivirus 22.5 22.11
avg / anti-virus 22.5 22.11