Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2020-9320

Avira AV Engine before 8.3.54.138 allows virus-detection bypass via a crafted ISO archive. This affects versions before 8.3.54.138 of Antivirus for Endpoint, Antivirus for Small Business, Exchange Security (Gateway), Internet Security Suite for Windows, Prime, Free Security Suite for Windows, and Cross Platform Anti-malware SDK. NOTE: Vendor asserts that vulnerability does not exist in product

Published

2020-02-20T22:15:12.257

Last Modified

2024-11-21T05:40:24.197

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 5.5 (MEDIUM)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: PARTIAL
Availability Impact: NONE

Exploitability Score

8.6

Impact Score

2.9

Weaknesses

Type: Primary
CWE-434

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	avira	anti-malware_sdk	< 8.3.54.138	Yes
Application	avira	antivirus_server	< 8.3.54.138	Yes
Application	avira	avira_antivirus_for_endpoint	< 8.3.54.138	Yes
Application	avira	avira_antivirus_for_small_business	< 8.3.54.138	Yes
Application	avira	avira_exchange_security	< 8.3.54.138	Yes
Application	avira	avira_free_security_suite	< 8.3.54.138	Yes
Application	avira	avira_internet_security_suite	< 8.3.54.138	Yes
Application	avira	avira_prime	< 8.3.54.138	Yes

References

http://packetstormsecurity.com/files/156472/AVIRA-Generic-Malformed-Container-Bypass.html Third Party Advisory, VDB Entry ([email protected])
http://seclists.org/fulldisclosure/2020/Feb/31 Mailing List, Third Party Advisory ([email protected])
https://blog.zoller.lu/p/from-low-hanging-fruit-department-avira.html Third Party Advisory ([email protected])
https://www.zoller.lu/%5BTZO-01-2020%5D%20AVIRA%20Generic%20Bypass%20ISO.pdf ([email protected])
http://packetstormsecurity.com/files/156472/AVIRA-Generic-Malformed-Container-Bypass.html Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://seclists.org/fulldisclosure/2020/Feb/31 Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://blog.zoller.lu/p/from-low-hanging-fruit-department-avira.html Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.zoller.lu/%5BTZO-01-2020%5D%20AVIRA%20Generic%20Bypass%20ISO.pdf (af854a3a-2127-422b-91ae-364da2661108)