Description
Heap buffer out-of-bounds read vulnerability in Avira Antivirus engine when scanning a malformed Windows MSI file may allow Local Execution of Code or Denial-of-Service of the antivirus engine process.

This issue affects Avira Antivirus on Windows, macOS, and Linux for engine builds before 8.3.70.56.
Published: 2026-06-12
Score: 7.8 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A heap buffer out‑of‑bounds read flaw exists in the Avira Antivirus scanning engine when it processes a specially crafted Windows MSI file. The vulnerability can lead either to the execution of arbitrary code in the context of the user launching the scan or to a denial‑of‑service condition that terminates the antivirus process. The weakness, classified as CWE‑125, highlights improper bounds checking during memory copy operations in the engine

Affected Systems

Gen Digital Avira Antivirus for Windows, macOS, and Linux is impacted for all engine builds earlier than 8.3.70.56. Users of these platforms should verify their installed antivirus engine version and plan an upgrade if necessary

Risk and Exploitability

The CVSS score of 7.8 indicates a high severity impact, while the EPSS score is currently unavailable, suggesting no publicly reported exploit yet. The entry is not listed in the CISA KEV catalog. An attacker must supply a malicious MSI file and execute a scan action, implying a local or privileged context is required. The lack of external exploitation data does not reduce the risk for environments that process untrusted MSI packages

Generated by OpenCVE AI on June 13, 2026 at 00:05 UTC.

Remediation

Vendor Solution

Upgrade to Avira scan engine build 8.3.70.56 or any later engine release. Builds at or above 8.3.70.56 include the fix.


OpenCVE Recommended Actions

  • Upgrade the Avira Antivirus engine to build 8.3.70.56 or later
  • Avoid scanning MSI files from untrusted or unknown sources until a patch is applied
  • If possible, temporarily disable the MSI scanning feature or quarantine files before scanning

Generated by OpenCVE AI on June 13, 2026 at 00:05 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 15 Jun 2026 18:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Sat, 13 Jun 2026 12:45:00 +0000

Type Values Removed Values Added
First Time appeared Gen Digital
Gen Digital avira Antivirus
Vendors & Products Gen Digital
Gen Digital avira Antivirus

Fri, 12 Jun 2026 22:15:00 +0000

Type Values Removed Values Added
Description Heap buffer out-of-bounds read vulnerability in Avira Antivirus engine when scanning a malformed Windows MSI file may allow Local Execution of Code or Denial-of-Service of the antivirus engine process. This issue affects Avira Antivirus on Windows, macOS, and Linux for engine builds before 8.3.70.56.
Title Avira antivirus engine heap buffer OOB read when scanning a malformed Windows MSI file
Weaknesses CWE-125
References
Metrics cvssV3_1

{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}


Subscriptions

Gen Digital Avira Antivirus
cve-icon MITRE

Status: PUBLISHED

Assigner: GEN

Published:

Updated: 2026-06-15T16:02:13.703Z

Reserved: 2025-07-02T11:59:07.847Z

Link: CVE-2025-7017

cve-icon Vulnrichment

Updated: 2026-06-15T16:02:09.101Z

cve-icon NVD

Status : Deferred

Published: 2026-06-12T22:16:49.343

Modified: 2026-06-15T20:49:19.213

Link: CVE-2025-7017

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-13T12:29:27Z

Weaknesses