CVE-2023-1587

Avast and AVG Antivirus for Windows were susceptible to a NULL pointer dereference issue via RPC-interface. The issue was fixed with Avast and AVG Antivirus version 22.11
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.8 MEDIUM
LOCAL
HIGH
LOW
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H
NLOKCNA
5.8 MEDIUM
LOCAL
HIGH
LOW
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H
CVEADP
---
---
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 16%
VendorProductVersion
avastantivirus
22.5 ≤
𝑥
< 22.11
avganti-virus
22.5 ≤
𝑥
< 22.11
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://support.norton.com/sp/static/external/tools/security-advisories.html
https://support.norton.com/sp/static/external/tools/security-advisories.html