CVE-2022-4173 - OpenCVE

A vulnerability within the malware removal functionality of Avast and AVG Antivirus allowed an attacker with write access to the filesystem, to escalate his privileges in certain scenarios. The issue was fixed with Avast and AVG Antivirus version 22.10.

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Avast	Avg Antivirus Avast

Configuration 1 [-]

OR	cpe:2.3:a:avast:avast::::::::
	cpe:2.3:a:avast:avg_antivirus::::::::

References

Link	Resource
https://support.norton.com/sp/static/external/tools/security-advisories.html	Third Party Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: NLOK

Published: 2022-12-05T23:15:33.724Z

Updated:

Reserved: 2022-11-29T00:57:05.463Z

Link: CVE-2022-4173

JSON object: View

NVD Information

Status : Modified

Published: 2022-12-06T00:15:10.303

Modified: 2023-11-07T03:57:08.523

Link: CVE-2022-4173

JSON object: View

Redhat Information

No data.

CWE

CWE-269

{"dataType": "CVE_RECORD", "dataVersion": "5.0", "cveMetadata": {"cveId": "CVE-2022-4173", "assignerOrgId": "dbd8429d-f261-4b1e-94cc-ae3132817e2e", "state": "PUBLISHED", "assignerShortName": "NLOK", "requesterUserId": "a89eadfe-7713-4641-b4d7-9b7a3717e63f", "dateReserved": "2022-11-29T00:57:05.463Z", "datePublished": "2022-12-05T23:15:33.724Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "platforms": ["Windows"], "product": "Avast and AVG Antivirus", "vendor": "NortonLifeLock", "versions": [{"lessThanOrEqual": "22.9", "status": "affected", "version": "20.5", "versionType": "custom"}]}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">A vulnerability within the malware removal functionality of Avast and AVG Antivirus allowed an attacker with write access to the filesystem, to escalate his privileges in certain scenarios. The issue was fixed with Avast and AVG Antivirus version 22.10.</span><br>"}], "value": "A vulnerability within the malware removal functionality of Avast and AVG Antivirus allowed an attacker with write access to the filesystem, to escalate his privileges in certain scenarios. The issue was fixed with Avast and AVG Antivirus version 22.10.\n"}], "impacts": [{"capecId": "CAPEC-233", "descriptions": [{"lang": "en", "value": "CAPEC-233 Privilege Escalation"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-269", "description": "CWE-269 Improper Privilege Management", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "dbd8429d-f261-4b1e-94cc-ae3132817e2e", "shortName": "NLOK", "dateUpdated": "2022-12-05T23:15:33.724Z"}, "references": [{"url": "https://support.norton.com/sp/static/external/tools/security-advisories.html"}], "source": {"discovery": "UNKNOWN"}, "title": "Avast and AVG Antivirus for Windows vulnerable to Privilege Escalation", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:avast:avast:*:*:*:*:*:*:*:*", "matchCriteriaId": "4C07A2CF-FBEC-42E5-AC35-693730D025C2", "versionEndIncluding": "22.9", "versionStartIncluding": "20.5", "vulnerable": true}, {"criteria": "cpe:2.3:a:avast:avg_antivirus:*:*:*:*:*:*:*:*", "matchCriteriaId": "36663122-612D-49E6-9AA4-7E618D014C64", "versionEndIncluding": "22.9", "versionStartIncluding": "20.5", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability within the malware removal functionality of Avast and AVG Antivirus allowed an attacker with write access to the filesystem, to escalate his privileges in certain scenarios. The issue was fixed with Avast and AVG Antivirus version 22.10.\n"}, {"lang": "es", "value": "Una vulnerabilidad dentro de la funcionalidad de eliminaci\u00f3n de malware de Avast y AVG Antivirus permiti\u00f3 a un atacante con acceso de escritura al sistema de archivos aumentar sus privilegios en ciertos escenarios. El problema se solucion\u00f3 con Avast y AVG Antivirus versi\u00f3n 22.10."}], "id": "CVE-2022-4173", "lastModified": "2023-11-07T03:57:08.523", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.3, "impactScore": 5.9, "source": "security@nortonlifelock.com", "type": "Secondary"}]}, "published": "2022-12-06T00:15:10.303", "references": [{"source": "security@nortonlifelock.com", "tags": ["Third Party Advisory"], "url": "https://support.norton.com/sp/static/external/tools/security-advisories.html"}], "sourceIdentifier": "security@nortonlifelock.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-269"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-269"}], "source": "security@nortonlifelock.com", "type": "Secondary"}]}