CVE-2025-4134

High CVSS: 7.3

Lack of file validation in do_update_vps in Avast Business Antivirus for Linux 4.5 on Linux allows local user to spoof or tamper with the update file via an unverified file write.

Vendor

Product

CWE

CWE-552

Yayın Tarihi

2025-05-28 14:15:34

Güncelleme

2025-05-28 15:01:30

Source Identifier

security@nortonlifelock.com

KEV Date Added

Kategoriler

CWE-552 HIGH 2025

Referanslar

https://www.gendigital.com/us/en/contact-us/security-advisories/