CVE-2024-7235

CVSS 3.0 Score 6.1 of 10 (medium)

Details

Published Nov 22, 2024
CWE ID 59

Summary

CVE-2024-7235 is a Denial-of-Service vulnerability affecting AVG AntiVirus Free. This issue enables local attackers to create a symbolic link and manipulate the AVG Service, resulting in a folder creation. Exploitation requires an attacker to gain low-privileged code execution on the target system. Successful exploitation can lead to a denial-of-service condition on the affected system. (Previously identified as ZDI-CAN-22803.)

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share