Avg Avast Antivirus vulnerabilities

CVE-2024-9484 [MEDIUM] CWE-476 CVE-2024-9484: An null-pointer-derefrence in the engine module in AVG/Avast Antivirus signature <24092400 released An null-pointer-derefrence in the engine module in AVG/Avast Antivirus signature <24092400 released on 24/Sep/2024 on MacOS allows a malformed xar file to crash the application during file processing.

CVE-2024-9483 [MEDIUM] CWE-476 CVE-2024-9483: A null-pointer-dereference in the signature verification module in AVG/Avast Antivirus signature <24 A null-pointer-dereference in the signature verification module in AVG/Avast Antivirus signature <24092400 released on 24/Sep/2024 on MacOS may allow a malformed xar file to crash the application during processing.

CVE-2024-9481 [MEDIUM] CWE-787 CVE-2024-9481: An out-of-bounds write in the engine module in AVG/Avast Antivirus signature <24092400 released on 2 An out-of-bounds write in the engine module in AVG/Avast Antivirus signature <24092400 released on 24/Sep/2024 on MacOS allows a malformed eml file to crash the application during file processing.

CVE-2024-9482 [MEDIUM] CWE-787 CVE-2024-9482: An out-of-bounds write in the engine module in AVG/Avast Antivirus signature <24092400 released on 2 An out-of-bounds write in the engine module in AVG/Avast Antivirus signature <24092400 released on 24/Sep/2024 on MacOS allows a malformed Mach-O file to crash the application during file processing.

CVE-2024-5803 [HIGH] CWE-367 CVE-2024-5803: The AVGUI.exe of AVG/Avast Antivirus before versions before 24.1 can allow a local attacker to escal The AVGUI.exe of AVG/Avast Antivirus before versions before 24.1 can allow a local attacker to escalate privileges via an COM hijack in a time-of-check to time-of-use (TOCTOU) when self protection is disabled.