CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-8620

Heap-based buffer overflow in the Avast virtualization driver (aswSnx.sys) in Avast Internet Security, Pro Antivirus, Premier, and Free Antivirus before 11.1.2253 allows local users to gain privileges via a Unicode file path in an IOCTL request.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 37.5%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 7.2

References

Products affected by CVE-2015-8620

Avast » Avast Free Antivirus » Version: N/A

cpe:2.3:a:avast:avast_free_antivirus:-
Avast » Avast Free Antivirus » Version: 11.1.2245

cpe:2.3:a:avast:avast_free_antivirus:11.1.2245
Avast » Avast Internet Security » Version: N/A

cpe:2.3:a:avast:avast_internet_security:-
Avast » Avast Internet Security » Version: 11.1.2245

cpe:2.3:a:avast:avast_internet_security:11.1.2245
Avast » Avast Premier » Version: N/A

cpe:2.3:a:avast:avast_premier:-
Avast » Avast Premier » Version: 11.1.2245

cpe:2.3:a:avast:avast_premier:11.1.2245
Avast » Avast Pro Antivirus » Version: N/A

cpe:2.3:a:avast:avast_pro_antivirus:-
Avast » Avast Pro Antivirus » Version: 11.1.2245

cpe:2.3:a:avast:avast_pro_antivirus:11.1.2245

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-8620

Products

Pricing

Contact Us