Primary

Context

Avast and AVG Antivirus Privilege Escalation Vulnerability in Sandbox Kernel Driver

Vulnerability

A double fetch vulnerability has been identified in the sandbox kernel driver of Avast and AVG Antivirus versions prior to 25.3 on Windows. This vulnerability allows local attackers to escalate privileges through a pool overflow exploitation.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing a local attacker to gain elevated rights or access within the system.

Added: Nov 11, 2025, 5:23 PM

Updated: Nov 11, 2025, 5:23 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

7.5

exploitability

2.9

remediation

0.0

relevance

0.9

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

7.5

exploitability

2.9

remediation

0.0

relevance

0.9

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Avast and AVG Antivirus Privilege Escalation Vulnerability in Sandbox Kernel Driver

Vulnerability

Impact

Affected Products

Avast Antivirus

AVG Antivirus

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating