CVE-2025-7007
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-12-01
Last updated on: 2025-12-01
Assigner: NortonLifeLock Inc.
Description
Description
NULL Pointer Dereference vulnerability in Avast Antivirus on MacOS, Avast Anitvirus on Linux when scanning a malformed Windows PE file causes the antivirus process to crash.This issue affects Antivirus: 16.0.0; Anitvirus: 3.0.3.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| avast | antivirus | 16.0.0 |
| avast | antivirus | 3.0.3 |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-476 | The product dereferences a pointer that it expects to be valid but is NULL. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a NULL Pointer Dereference in Avast Antivirus on MacOS and Linux. It occurs when the antivirus scans a malformed Windows PE file, causing the antivirus process to crash.
How can this vulnerability impact me? :
The vulnerability can cause the antivirus process to crash, potentially leading to a denial of service where the antivirus protection is temporarily unavailable, increasing the risk of malware infection.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70