GHSA-qqxm-j467-m9mrHighCVSS 7.8

AVAST Antivirus 25.11 contains an unquoted service path vulnerability in the SecureLine service...

Published
June 19, 2026
Last Modified
June 19, 2026

🔗 CVE IDs covered (1)

📋 Description

AVAST Antivirus 25.11 contains an unquoted service path vulnerability in the SecureLine service that allows local non-privileged users to execute code with elevated SYSTEM privileges. Attackers can exploit the unquoted binary path in the service configuration to inject malicious executables that execute with high-level system permissions.

🔗 References (5)