Vulnerability Details CVE-2024-5102
A sym-linked file accessed via the repair function in Avast Antivirus <24.2 on Windows may allow user to elevate privilege to delete arbitrary files or run processes as NT AUTHORITY\SYSTEM. The vulnerability exists within the "Repair" (settings -> troubleshooting -> repair) feature, which attempts to delete a file in the current user's AppData directory as NT AUTHORITY\SYSTEM. A low-privileged user can make a pseudo-symlink and a junction folder and point to a file on the system. This can provide a low-privileged user an Elevation of Privilege to win a race-condition which will re-create the system files and make Windows callback to a specially-crafted file which could be used to launch a privileged shell instance.
This issue affects Avast Antivirus prior to 24.2.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 24.0%
CVSS Severity
CVSS v3 Score 7.0
References
Products affected by CVE-2024-5102
-
cpe:2.3:a:avast:antivirus:12.1.2272
-
cpe:2.3:a:avast:antivirus:12.2.2276
-
cpe:2.3:a:avast:antivirus:12.3.2279
-
cpe:2.3:a:avast:antivirus:17.1.2286
-
cpe:2.3:a:avast:antivirus:17.2.2288
-
cpe:2.3:a:avast:antivirus:17.3.2290
-
cpe:2.3:a:avast:antivirus:17.3.2291
-
cpe:2.3:a:avast:antivirus:17.4.2294
-
cpe:2.3:a:avast:antivirus:17.5.2302
-
cpe:2.3:a:avast:antivirus:17.6.2310
-
cpe:2.3:a:avast:antivirus:17.7.2314
-
cpe:2.3:a:avast:antivirus:17.8.2318
-
cpe:2.3:a:avast:antivirus:17.9.2322
-
cpe:2.3:a:avast:antivirus:18.1.2326
-
cpe:2.3:a:avast:antivirus:18.2.2328
-
cpe:2.3:a:avast:antivirus:18.3.2333
-
cpe:2.3:a:avast:antivirus:18.4.2338
-
cpe:2.3:a:avast:antivirus:18.5.2342
-
cpe:2.3:a:avast:antivirus:18.6.2349
-
cpe:2.3:a:avast:antivirus:18.7.2354
-
cpe:2.3:a:avast:antivirus:18.8.2356
-
cpe:2.3:a:avast:antivirus:19.1
-
cpe:2.3:a:avast:antivirus:19.3.2369
-
cpe:2.3:a:avast:antivirus:19.4
-
cpe:2.3:a:avast:antivirus:19.4.2374
-
cpe:2.3:a:avast:antivirus:19.5.2378
-
cpe:2.3:a:avast:antivirus:19.6.2383
-
cpe:2.3:a:avast:antivirus:19.7
-
cpe:2.3:a:avast:antivirus:19.7.2388
-
cpe:2.3:a:avast:antivirus:19.8
-
cpe:2.3:a:avast:antivirus:19.8.2393
-
cpe:2.3:a:avast:antivirus:20.0
-
cpe:2.3:a:avast:antivirus:20.1.5069.562
-
cpe:2.3:a:avast:antivirus:22.10
-
cpe:2.3:a:avast:antivirus:22.11
-
cpe:2.3:a:avast:antivirus:22.5
-
cpe:2.3:a:avast:antivirus:8.0.1489
-
cpe:2.3:a:avast:antivirus:8.0.1497
-
cpe:2.3:a:avast:antivirus:8.0.1500
-
cpe:2.3:a:avast:antivirus:8.0.1501
-
cpe:2.3:a:avast:antivirus:8.0.1504
-
cpe:2.3:a:avast:antivirus:8.0.1506
-
cpe:2.3:o:microsoft:windows:-