AI description
CVE-2025-13032 is a vulnerability found in Avast/AVG Antivirus versions less than 25.3 on Windows. It involves a double fetch issue in the sandbox kernel driver. This vulnerability allows a local attacker to escalate privileges by exploiting a pool overflow.
- Description
- Double fetch in sandbox kernel driver in Avast/AVG Antivirus <25.3 on windows allows local attacker to escalate privelages via pool overflow.
- Source
- security@nortonlifelock.com
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Secondary
- Base score
- 9.9
- Impact score
- 6
- Exploitability score
- 3.1
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
- Severity
- CRITICAL
- security@nortonlifelock.com
- CWE-367
- Hype score
- Not currently trending
برای یکی از درایور های آنتی ویروس Avast ، یعنی aswSnx.sys آسیب پذیری از نوع Buffer overflow با کد شناسایی CVE-2025-13032 منتشر شده است که باعث privilege escalation می شود. تمام نسخه های ق
@EthicalSafe
5 Dec 2025
37 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Our team discovered CVE-2025-13032, an LPE in the Avast sandbox driver! Read the story of a SYSTEM token heist involving a break-in and escape from the antivirus sandbox. Full details: https://t.co/UzxwvrT3C1 #CVE #LPE #Antivirus #KernelExploit #WindowsSecurity
@SAFATeamApS
4 Dec 2025
4126 Impressions
27 Retweets
46 Likes
19 Bookmarks
0 Replies
0 Quotes
CVE-2025-13032 Double fetch in sandbox kernel driver in Avast/AVG Antivirus <25.3 on windows allows local attacker to escalate privelages via pool overflow. https://t.co/RnXWqGHt1a
@CVEnew
12 Nov 2025
356 Impressions
1 Retweet
1 Like
0 Bookmarks
0 Replies
0 Quotes
[CVE-2025-13032: CRITICAL] Double fetch in sandbox kernel driver in Avast/AVG Antivirus <25.3 on windows allows local attacker to escalate privelages via pool overflow.#cve,CVE-2025-13032,#cybersecurity https://t.co/5Kvc6SGZQp https://t.co/e6ThkmVaps
@CveFindCom
11 Nov 2025
66 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes