Avast Antivirus NULL Pointer Dereference Vulnerability on MacOS and Linux

Vulnerability

A NULL pointer dereference vulnerability has been identified in Avast Antivirus on MacOS and Linux. When the antivirus scans a malformed Windows PE file, it causes the antivirus process to crash. This issue affects Avast Antivirus versions 16.0.0 and 3.0.3.

Impact

Exploitation of this vulnerability leads to a crash of the antivirus process, causing a denial of service.

Added: Dec 1, 2025, 5:31 PM

Updated: Dec 1, 2025, 5:31 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

0.6

exploitability

4.7

remediation

0.0

relevance

1.2

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

0.6

exploitability

4.7

remediation

0.0

relevance

1.2

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Avast Antivirus NULL Pointer Dereference Vulnerability on MacOS and Linux

Vulnerability

Impact

Affected Products

Avast Antivirus

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating