Privilege Escalation Vulnerability in Avast/AVG Antivirus Products
CVE-2025-13032
What is CVE-2025-13032?
CVE-2025-13032 is a privilege escalation vulnerability affecting Avast and AVG antivirus products prior to version 25.3 on Windows platforms. This flaw is characterized by a double fetch issue within the sandbox kernel driver of the antivirus software. Essentially, the vulnerability enables a local attacker to exploit a pool overflow condition, which can be manipulated to escalate privileges on the affected system. Given that antivirus solutions are integral to protecting systems from malware and other malicious threats, a successful exploitation of this vulnerability could lead to unauthorized access and control over critical system functions, severely impacting an organization's security posture.
Potential impact of CVE-2025-13032
-
Unauthorized Privilege Escalation: Exploiting this vulnerability allows local attackers to gain elevated privileges, potentially granting them full control over the system. This could facilitate further malicious activities such as unauthorized data access, manipulation, or system configuration changes.
-
Compromise of Security Solutions: Since the affected products are designed to protect systems against malware and viruses, successful exploitation could disable or circumvent the very protections intended to keep systems secure. Attackers could disable antivirus functionalities, subsequently placing the system at risk of additional threats.
-
Increased Malware Susceptibility: With a compromised antivirus solution, organizations may find themselves vulnerable to an elevated risk of malware infections. This could lead to data theft, ransomware attacks, or the deployment of additional malicious payloads within the network.
Affected Version(s)
(Free/Inernet Security/Ultimate) Antivirus Windows 0
(Free/Premiium/Ultimeat) Antivirus Windows 0
One Windows 0