Vulnerabilities > Avira > Software Updater > 2.0.6.13175

DATE CVE VULNERABILITY TITLE RISK
2020-05-05 CVE-2020-12463 Improper Privilege Management vulnerability in Avira Software Updater
An elevation of privilege vulnerability exists in Avira Software Updater before 2.0.6.27476 due to improperly handling file hard links.
local
low complexity
avira CWE-269
4.6
4.6
2019-10-10 CVE-2019-17449 Untrusted Search Path vulnerability in Avira Software Updater 2.0.6.13175/2.0.6.17105/2.0.6.20377
Avira Software Updater before 2.0.6.21094 allows a DLL side-loading attack.
local
low complexity
avira CWE-426
6.7
6.7