CVE-2025-7007NULL Pointer Dereference in Anitvirus

CWE-476NULL Pointer Dereference3 documents3 sources
Severity
7.5HIGHNVD
EPSS
0.0%
top 93.22%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Avast AnitvirusAvast Antivirus
Timeline
PublishedDec 1

Description

NULL Pointer Dereference vulnerability in Avast Antivirus on MacOS, Avast Anitvirus on Linux when scanning a malformed Windows PE file causes the antivirus process to crash.This issue affects Antivirus: 16.0.0; Anitvirus: 3.0.3.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:HExploitability: 0.8 | Impact: 6.0

Affected Packages2 packages

CVEListV5avast/antivirus16.0.0
CVEListV5avast/anitvirus3.0.3

🔴Vulnerability Details

2
CVEList
Null pointer dereference in Avast Antivirus on macOS (16.0.0) or Linux (3.0.3)2025-12-01
GHSA
GHSA-xx8q-m9qm-7fm9: NULL Pointer Dereference vulnerability in Avast Antivirus on MacOS, Avast Anitvirus on Linux when scanning a malformed Windows PE file causes the anti2025-12-01
CVE-2025-7007 — NULL Pointer Dereference in Avast | cvebase