CVE-2020-10863

An issue was discovered in Avast Antivirus before 20. The aswTask RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe) allows attackers to trigger a shutdown via RPC from a Low Integrity process via TempShutDownMachine.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:avast:antivirus:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

History

21 Nov 2024, 04:56

Type Values Removed Values Added
References () https://forum.avast.com/index.php?topic=232420.0 - Release Notes, Vendor Advisory () https://forum.avast.com/index.php?topic=232420.0 - Release Notes, Vendor Advisory
References () https://forum.avast.com/index.php?topic=232423.0 - Release Notes, Vendor Advisory () https://forum.avast.com/index.php?topic=232423.0 - Release Notes, Vendor Advisory
References () https://github.com/umarfarook882/Avast_Multiple_Vulnerability_Disclosure/blob/master/README.md - Exploit, Third Party Advisory () https://github.com/umarfarook882/Avast_Multiple_Vulnerability_Disclosure/blob/master/README.md - Exploit, Third Party Advisory

Information

Published : 2020-04-01 17:15

Updated : 2024-11-21 04:56


NVD link : CVE-2020-10863

Mitre link : CVE-2020-10863

CVE.ORG link : CVE-2020-10863


JSON object : View

Products Affected

microsoft

  • windows

avast

  • antivirus