Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2020-8961

An issue was discovered in Avira Free-Antivirus before 15.0.2004.1825. The Self-Protection feature does not prohibit a write operation from an external process. Thus, code injection can be used to turn off this feature. After that, one can construct an event that will modify a file at a specific location, and pass this event to the driver, thereby defeating the anti-virus functionality.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 65.1%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
Products affected by CVE-2020-8961
  • Avira » Free Antivirus » Version: 15.0.1907.1514
    cpe:2.3:a:avira:free_antivirus:15.0.1907.1514
  • Avira » Free Antivirus » Version: 15.0.1909.1591
    cpe:2.3:a:avira:free_antivirus:15.0.1909.1591
  • Avira » Free Antivirus » Version: 15.0.1911.1648
    cpe:2.3:a:avira:free_antivirus:15.0.1911.1648
  • Avira » Free Antivirus » Version: 15.0.1911.1660
    cpe:2.3:a:avira:free_antivirus:15.0.1911.1660
  • Avira » Free Antivirus » Version: 15.0.1912.1683
    cpe:2.3:a:avira:free_antivirus:15.0.1912.1683
  • Avira » Free Antivirus » Version: 15.0.2002.1755
    cpe:2.3:a:avira:free_antivirus:15.0.2002.1755


Products
Pricing
Contact Us

Shodan ® - All rights reserved