CRITICAL🇵🇱 Wersja polska

CVE-2025-13032

CVSS 9.9v3.1pub. 2025-11-11upd. 2025-12-08

Double fetch in sandbox kernel driver in Avast/AVG Antivirus <25.3  on windows allows local attacker to escalate privelages via pool overflow.

🤖 AI Analysis
How it works

The vulnerability (CWE-367 — race condition resulting from double fetch of a shared resource) occurs because the kernel driver handling the sandbox performs a double read of a value from user memory without locking it first. An attacker can modify this value between the first and second read, causing data inconsistency and triggering a kernel pool buffer overflow. The result is the ability to execute code with kernel-level privileges.

Impact

A local attacker can obtain full system privileges (privilege escalation to kernel level), giving them complete control over the operating system, including the ability to bypass protective mechanisms and install malicious software.

Mitigation & patch

Avast Antivirus or AVG Antivirus must be updated to version 25.3 or later. Detailed information is available in the vendor's security advisory at: https://www.gendigital.com/us/en/contact-us/security-advisories/

Who is affected

Avast Antivirus and AVG Antivirus versions below 25.3 installed on Microsoft Windows systems.

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
  • Avast Antivirus

    APP
    Avast
    < 25.3
  • Microsoft Windows

    OS
    Microsoft
    wszystkie wersje
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2026-8398CRITICAL9.3⚠ KEVPL ✓ten sam produkt

Atak na łańcuch dostaw DAEMON Tools Lite — trojanizacja instalatorów

CVE-2025-10585CRITICAL9.8⚠ KEVPL ✓ten sam produkt

Type confusion w V8 (Google Chrome) — zdalne uszkodzenie sterty

CVE-2025-34028CRITICAL9.3⚠ KEVPL ✓ten sam produkt

Commvault Command Center – nieuwierzytelniony RCE przez path traversal w ZIP

CVE-2024-7262CRITICAL9.3⚠ KEVPL ✓ten sam produkt

Path Traversal w Kingsoft WPS Office — ładowanie dowolnej biblioteki Windows

CVE-2024-4577CRITICAL9.8⚠ KEVPL ✓ten sam produkt

PHP CGI argument injection – RCE na Windows przez mechanizm Best-Fit