CVE-2007-0829 โ€” Avast Antivirus vulnerability

4 documents4 sources
Severity
4.4MEDIUMNVD
EPSS
0.1%
top 77.20%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Alwil Avast Antivirus
Timeline
PublishedFeb 7
Latest updateMay 1

Description

avast! Server Edition before 4.7.726 does not demand a password in a certain intended context, even when a password has been set, which allows local users to bypass authentication requirements.

CVSS vector

AV:L/AC:M/C:P/I:P/A:PExploitability: 3.4 | Impact: 6.4

Affected Packages1 packages

โ–ถNVDalwil/avast_antivirus5 versions+4

๐Ÿ”ดVulnerability Details

2
GHSA
GHSA-769j-g48q-6jw7: avast! Server Edition before 4โ†—2022-05-01
โ–ถ
CVEList
CVE-2007-0829: avast! Server Edition before 4โ†—2007-02-07
โ–ถ

๐Ÿ’ฌCommunity

1
Bugzilla
CVE-2007-4381 java: Vulnerability in the font parsing codeโ†—2007-08-20
โ–ถ
CVE-2007-0829 โ€” Alwil Avast Antivirus vulnerability | cvebase