Out-of-Bounds Write Vulnerability in AVG/Avast Antivirus for MacOS
CVE-2024-9481

5.5MEDIUM

Key Information:

Vendor: Avg
Status: Antivirus
Vendor: CVE Published:; 4 October 2024

What is CVE-2024-9481?

An out-of-bounds write in the engine module of AVG/Avast Antivirus affects versions prior to signature version 24092400. This vulnerability allows a specially crafted eml file to cause the application to crash during file processing on MacOS systems. Users are advised to update to the latest signature version to mitigate the risk associated with this flaw.

References

https://support.norton.com/sp/static/external/tools/secur...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 4, 2024

Avg

What is CVE-2024-9481?

References

CVSS V3.1

Timeline