CVE-2025-3500Integer Overflow or Wraparound in Antivirus

CWE-190Integer Overflow or Wraparound4 documents4 sources
Severity
9.8CRITICALNVD
CNA9.0
EPSS
0.0%
top 86.31%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Avast Antivirus
Timeline
PublishedDec 1

Description

Integer Overflow or Wraparound vulnerability in Avast Antivirus (25.1.981.6) on Windows allows Privilege Escalation.This issue affects Antivirus: from 25.1.981.6 before 25.3.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

CVEListV5avast/antivirus25.1.981.625.3
NVDavast/antivirus25.1.981.625.3

🔴Vulnerability Details

2
CVEList
Integer Overflow in Avast Antiviurs 25.1.981.6 on Windows may result in privilege escalation2025-12-01
GHSA
GHSA-28rh-r6hp-jmq3: Integer Overflow or Wraparound vulnerability in Avast Antivirus (252025-12-01

💥Exploits & PoCs

1
Exploit-DB
atjiu pybbs 6.0.0 - Cross Site Scripting (XSS)2025-08-11
CVE-2025-3500 — Integer Overflow or Wraparound in Avast | cvebase