CVE-2021-45335 : What You Need to Know

Understanding CVE-2021-45335

What is CVE-2021-45335?

The sandbox component in Avast Antivirus prior to version 20.4 contains an insecure permission that could be exploited by a local user to manipulate scan outcomes, potentially enabling evasion of detection and deletion of arbitrary system files.

The Impact of CVE-2021-45335

This vulnerability could allow a threat actor with local access to compromise the integrity and security of the system, leading to unauthorized control over scan results, evasion of detection, and potential deletion of critical system files.

Technical Details of CVE-2021-45335

Vulnerability Description

The Avast Antivirus sandbox component with an insecure permission setting is at the core of this vulnerability, enabling unauthorized local users to control scan results, potentially resulting in adverse consequences like system file deletion.

Affected Systems and Versions

Affected Version: Avast Antivirus prior to version 20.4
All systems running Avast Antivirus versions earlier than 20.4

Exploitation Mechanism

The vulnerability arises from the sandbox component's inadequate permission control, allowing local users to manipulate the scan outcomes through unauthorized means, posing a significant security risk to the system.

Mitigation and Prevention

Immediate Steps to Take

Update Avast Antivirus to version 20.4 or later to mitigate the vulnerability.
Monitor for any unusual system behavior that might indicate exploitation of the vulnerability.

Long-Term Security Practices

Regularly review and update security configurations to ensure proper permission settings.
Educate users on best practices for cybersecurity hygiene to prevent exploitation of system vulnerabilities.

Patching and Updates

Stay informed about security updates and patches released by Avast and apply them promptly to safeguard your system from potential threats.