CVE-2021-45336

2021-12-2712:35:42

mitre

www.cve.org

cve-2021-45336

avast antivirus

sandbox

privilege escalation

system privileges

AI Score

9.1

Confidence

High

EPSS

0.001

Percentile

17.8%

JSON

Privilege escalation vulnerability in the Sandbox component of Avast Antivirus prior to 20.4 allows a local sandboxed code to gain elevated privileges by using system IPC interfaces which could lead to exit the sandbox and acquire SYSTEM privileges.

References

github.com/the-deniss/Vulnerability-Disclosures/tree/main/CVE-2021-AVST3%20%26%20CVE-2021-AVST4%20%26%20CVE-2021-AVST5

www.avast.com/hacker-hall-of-fame/en/researcher-david-eade-reports-antitrack-bug-to-avast-0