Vulnerabilities > CVE-2020-13657 - Unspecified vulnerability in Avast AVG Antivirus and Free Antivirus

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

local

low complexity

avast

NVD

Published: 2020-06-29

Updated: 2021-07-21

Summary

An elevation of privilege vulnerability exists in Avast Free Antivirus and AVG AntiVirus Free before 20.4 due to improperly handling hard links. The vulnerability allows local users to take control of arbitrary files.

Vulnerable Configurations

Part	Description	Count
Application	Avast Avast AVG Antivirus * Avast Free Antivirus 11.1.2241 Avast Free Antivirus 11.1.2245 Avast Free Antivirus 11.1.2253 Avast Free Antivirus 11.1.2260 Avast Free Antivirus 11.1.2261 Avast Free Antivirus 11.1.2262 Avast Free Antivirus 12.1.2272 Avast Free Antivirus 12.2.2276 Avast Free Antivirus 12.3 Avast Free Antivirus 12.3.2279 Avast Free Antivirus 17.1.2286 Avast Free Antivirus 17.2.2288 Avast Free Antivirus 17.3.2290 Avast Free Antivirus 17.3.2291 Avast Free Antivirus 17.4.2294 Avast Free Antivirus 17.5.2302 Avast Free Antivirus 17.6.2310 Avast Free Antivirus 17.7.2314 Avast Free Antivirus 17.8.2318 Avast Free Antivirus 17.9.2322 Avast Free Antivirus 18.1.2326 Avast Free Antivirus 18.2.2328 Avast Free Antivirus 18.3.2333 Avast Free Antivirus 18.4.2338 Avast Free Antivirus 18.5.2342 Avast Free Antivirus 18.6.2349 Avast Free Antivirus 18.7.2354 Avast Free Antivirus 18.8.2356 Avast Free Antivirus 19.1.2360 Avast Free Antivirus 19.2.2364 Avast Free Antivirus 19.3.2369 Avast Free Antivirus 19.4.2374 Avast Free Antivirus 19.5.2378 Avast Free Antivirus 19.6.2383 Avast Free Antivirus 19.7.2388 Avast Free Antivirus 19.8.2393 Avast Free Antivirus 20.1.2397 Avast Free Antivirus 20.2.2401 Avast Free Antivirus 20.3.2405	40

Summary

Vulnerable Configurations

References