Vulnerability Details

Avast Antivirus (All Editions) < 19.8 DLL Preloading Vulnerability (Windows)

Published: 2019-10-26 16:39:30
CVE Author: NIST National Vulnerability Database (NVD)

CVSS Base Vector:

Detection Type:
Windows Registry

Solution Type:
Vendor Patch

This host is running Avast Antivirus and is prone to a dll preloading vulnerability.

Detection Method:
Checks if a vulnerable version is present on the target host.

Technical Details:
The vulnerability gives attackers the ability to: - load and execute malicious payloads using multiple signed services, within the context of Avast signed processes - bypass the part of the self-defense mechanism that should prevent an attacker from tampering with processes and files of Avast Antivirus and load an arbitrary DLL into the Antivirus process - load and execute malicious payloads in a persistent way, each time the services are loaded.

The vulnerability can be used to achieve self-defense bypass, defense evasion, persistence and privilege escalation.

Affected Versions:
All Editions of Avast Antivirus before version 19.8.

Update to Avast Antivirus version 19.8 or later.

NIST (National Institute of Standards and Technology) NVD (National Vulnerability Database)


CVSS Score

You never have to pay for a vulnerability scanning and management software again.

Tired of paying a subscription 'per asset' or 'per IP'? Well you can officially cancel your current subscription. Mageni provides a free, open source and enterprise-ready vulnerability scanning and management platform which helps you to find, prioritize, remediate and manage your vulnerabilities. It is free and always will be.