Vulnerabilities > Avast > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-01 | CVE-2020-10868 | Unspecified vulnerability in Avast Antivirus An issue was discovered in Avast Antivirus before 20. | 7.5 |
| 2020-04-01 | CVE-2020-10866 | Inadequate Encryption Strength vulnerability in Avast Antivirus An issue was discovered in Avast Antivirus before 20. | 7.5 |
| 2020-04-01 | CVE-2020-10865 | Inclusion of Functionality from Untrusted Control Sphere vulnerability in Avast Antivirus An issue was discovered in Avast Antivirus before 20. | 7.5 |
| 2020-04-01 | CVE-2020-10863 | Unspecified vulnerability in Avast Antivirus An issue was discovered in Avast Antivirus before 20. | 7.5 |
| 2020-04-01 | CVE-2020-10862 | Unspecified vulnerability in Avast Antivirus An issue was discovered in Avast Antivirus before 20. | 7.8 |
| 2020-04-01 | CVE-2020-10861 | Unspecified vulnerability in Avast Antivirus An issue was discovered in Avast Antivirus before 20. | 7.5 |
| 2020-04-01 | CVE-2020-10860 | Out-of-bounds Write vulnerability in Avast Antivirus An issue was discovered in Avast Antivirus before 20. | 7.5 |
| 2020-03-09 | CVE-2020-8987 | Improper Certificate Validation vulnerability in Avast Antitrack and AVG Antitrack Avast AntiTrack before 1.5.1.172 and AVG Antitrack before 2.0.0.178 proxies traffic to HTTPS sites but does not validate certificates, and thus a man-in-the-middle can host a malicious website using a self-signed certificate. | 7.4 |
| 2020-01-27 | CVE-2019-17190 | Incorrect Authorization vulnerability in Avast Secure Browser 76.0.1659.101 A Local Privilege Escalation issue was discovered in Avast Secure Browser 76.0.1659.101. | 7.8 |
| 2020-01-13 | CVE-2019-18894 | OS Command Injection vulnerability in Avast Premium Security 19.8.2393 In Avast Premium Security 19.8.2393, attackers can send a specially crafted request to the local web server run by Avast Antivirus on port 27275 to support Bank Mode functionality. | 7.8 |