Vulnerability in Avast Avg_antivirus

CVE-2020-13657

An elevation of privilege vulnerability exists in Avast Free Antivirus and AVG AntiVirus Free before 20.4 due to improperly handling hard links. The vulnerability allows local users to take control of arbitrary files.

EPSS: 0.004 (31.4th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.5 (Medium). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N.

Affected products

References

Frequently asked questions

What is CVE-2020-13657?
CVE-2020-13657 is a medium-severity vulnerability in Avast Avg_antivirus. CVSS score: 5.5/10. Published 2020-06-29.
How severe is CVE-2020-13657?
Medium severity. CVSS v3 base score is 5.5 out of 10.