Search Results (2 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2025-71326 1 Avast 2 Avast Antivirus, Avast Antivirus Free 2026-07-14 7.8 High
AVAST Antivirus 25.11 contains an unquoted service path vulnerability in the SecureLine service that allows local non-privileged users to execute code with elevated SYSTEM privileges. Attackers can exploit the unquoted binary path in the service configuration to inject malicious executables that execute with high-level system permissions.
CVE-2010-3126 1 Avast 1 Avast Antivirus Free 2025-04-11 N/A
Untrusted search path vulnerability in avast! Free Antivirus version 5.0.594 and earlier allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse mfc90loc.dll that is located in the same folder as an avast license (.avastlic) file.