CVE-2025-71326 - AVAST Antivirus 25.11 Unquoted Service Path Privilege Escalation
CVE ID :CVE-2025-71326
Published : June 19, 2026, 2:16 p.m. | 1 hour, 22 minutes ago
Description :AVAST Antivirus 25.11 contains an unquoted service path vulnerability in the SecureLine service that allows local non-privileged users to execute code with elevated SYSTEM privileges. Attackers can exploit the unquoted binary path in the service configuration to inject malicious executables that execute with high-level system permissions.
Severity: 8.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Published : June 19, 2026, 2:16 p.m. | 1 hour, 22 minutes ago
Description :AVAST Antivirus 25.11 contains an unquoted service path vulnerability in the SecureLine service that allows local non-privileged users to execute code with elevated SYSTEM privileges. Attackers can exploit the unquoted binary path in the service configuration to inject malicious executables that execute with high-level system permissions.
Severity: 8.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...