How severe is CVE-2023-5760?

CVE-2023-5760 has a CVSS v3 score of 8.2 (HIGH).

CVE-2023-5760

Name: avg_antivirus
Author: avast

8.2HIGH

A time-of-check to time-of-use (TOCTOU) bug in handling of IOCTL (input/output control) requests. This TOCTOU bug leads to an out-of-bounds write vulnerability which can be further exploited, allowing

Published: 11/8/2023Updated: 11/21/2024

Description

A time-of-check to time-of-use (TOCTOU) bug in handling of IOCTL (input/output control) requests. This TOCTOU bug leads to an out-of-bounds write vulnerability which can be further exploited, allowing an attacker to gain full local privilege escalation on the system.This issue affects Avast/Avg Antivirus: 23.8.

AI AnalysisPowered by AI

Affected Products

avastavg_antivirus

23.8

References

https://support.norton.com/sp/static/external/tools/security-advisories.html
Third Party Advisory
https://support.norton.com/sp/static/external/tools/security-advisories.html
Third Party Advisory