Vulnerability Database

310,710

Total vulnerabilities in the database

CVE-2023-1586

Avast and AVG Antivirus for Windows were susceptible to a Time-of-check/Time-of-use (TOCTOU) vulnerability in the restore process leading to arbitrary file creation. The issue was fixed with Avast and AVG Antivirus version 22.11

Published: Apr 19, 2023
Updated: Nov 16, 2025
CVE: CVE-2023-1586
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.5
AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L

CWEs:

CWE-367

Affected Software
References

Software	From	Fixed in
avast / antivirus	22.5	22.11
avg / anti-virus	22.5	22.11

https://support.norton.com/sp/static/external/tools/security-advisories.html

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo