Avast and AVG Antivirus for Windows were susceptible to a Time-of-check/Time-of-use (TOCTOU) vulnerability in the Quarantine process, leading to arbitrary file/directory deletion. The issue was fixed with Avast and AVG Antivirus version 22.11 and virus definitions from 14 February 2023 or later.
CPE | Name | Operator | Version |
---|---|---|---|
antivirus | ge | 22.5 | |
antivirus | lt | 22.11 | |
anti-virus | ge | 22.5 | |
anti-virus | lt | 22.11 |