Vulnerabilities > CVE-2020-9399 - Incorrect Authorization vulnerability in Avast products
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
The Avast AV parsing engine allows virus-detection bypass via a crafted ZIP archive. This affects versions before 12 definitions 200114-0 of Antivirus Pro, Antivirus Pro Plus, and Antivirus for Linux.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 3 |