CVE-2024-7235
CVSS 3.0 Score 6.1 of 10 (medium)
Details
Published Nov 22, 2024
CWE ID 59
Summary
CVE-2024-7235 is a Denial-of-Service vulnerability affecting AVG AntiVirus Free. This issue enables local attackers to create a symbolic link and manipulate the AVG Service, resulting in a folder creation. Exploitation requires an attacker to gain low-privileged code execution on the target system. Successful exploitation can lead to a denial-of-service condition on the affected system. (Previously identified as ZDI-CAN-22803.)
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share