CVE-2025-4134 | Avast Business Antivirus 4.5.1 on Linux do_update_vps file access

Inserito da Angelo Barbosa | Mag 28, 2025 | CVE

A vulnerability was found in Avast Business Antivirus 4.5.1 on Linux and classified as critical. Affected by this issue is the function do_update_vps. The manipulation leads to files or directories accessible.

This vulnerability is handled as CVE-2025-4134. Local access is required to approach this attack. There is no exploit available.

CVE-2025-4134 | Avast Business Antivirus 4.5.1 on Linux do_update_vps file access

Post correlati

CVE-2024-47010 | Ivanti Avalanche up to 6.4.4 path traversal

CVE-2024-1140 | Filseclab Twister Antivirus 8.17 IOCTL filmfd.sys out-of-bounds

CVE-2024-36405 | open-quantum-safe liboqs up to 0.10.0 ML-KEM 512 Secret Key timing discrepancy (GHSA-f2v9-5498-2vpp)

CVE-2024-5598 | Advanced File Manager Plugin up to 5.2.4 on WordPress exposure of information through directory listing