Vulnerability Details CVE-2020-9399
The Avast AV parsing engine allows virus-detection bypass via a crafted ZIP archive. This affects versions before 12 definitions 200114-0 of Antivirus Pro, Antivirus Pro Plus, and Antivirus for Linux.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 30.3%
CVSS Severity
CVSS v3 Score 5.5
CVSS v2 Score 4.3
References
Products affected by CVE-2020-9399
-
cpe:2.3:a:avast:antivirus_for_linux:*
-
cpe:2.3:a:avast:antivirus_pro:*
-
cpe:2.3:a:avast:antivirus_pro_plus:*