These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
A heap buffer out-of-bounds write vulnerability exists in the Avira Antivirus engine when scanning a malformed POSIX tar archive. This issue, tracked as CVE-2026-6676, may allow for Local Execution of Code or Denial-of-Service of the antivirus engine process. The vulnerability affects Avira Antivirus on Windows, macOS, and Linux for engine builds before 8.3.27.12. The CVSS score for this vulnerability is [truncated]
CVE-2026-12068 is an information disclosure vulnerability in Avira Password Manager when used with Mozilla Firefox. A remote attacker operating a cross-origin iframe may obtain credentials autofilled for the parent web page via incorrect autofill field selection. This issue affects Avira Password Manager when used with Mozilla Firefox on Windows, macOS, and Linux. The CVSS score for this vulnerability is [truncated]
A heap buffer out-of-bounds read vulnerability was discovered in the Avira Antivirus engine. This issue occurs when the engine scans a malformed PDF file, potentially allowing for Local Execution of Code or Denial-of-Service of the antivirus engine process. The vulnerability affects Avira Antivirus on Windows, macOS, and Linux for engine builds before 8.3.70.76.
A heap buffer out-of-bounds write vulnerability due to integer overflow in Avira Antivirus engine when scanning a malformed MS-DOS executable file may allow Local Execution of Code or Denial-of-Service of the antivirus engine process. This issue affects Avira Antivirus on Windows, macOS, and Linux for engine builds before 8.3.70.104.
A stack overflow vulnerability exists in Avast Antivirus when scanning a malformed Office Open XML file. This issue may allow a Denial-of-Service (DoS) of the antivirus process. The vulnerability affects Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus on Windows, macOS, and Linux for virus definition builds before VPS 25020100. The affected scanning logic is deliv [truncated]
A Null pointer dereference vulnerability was discovered in the Avira Antivirus engine when scanning a malformed Windows PE file. This issue may allow a Denial-of-Service (DoS) of the antivirus engine process. The vulnerability affects Avira Antivirus on Windows, macOS, and Linux for engine builds before 8.3.70.64.
A heap buffer out-of-bounds read vulnerability was discovered in the Avira Antivirus engine when scanning a malformed Windows MSI file. This issue, tracked as CVE-2025-7017, may allow for Local Execution of Code or Denial-of-Service of the antivirus engine process. The vulnerability affects Avira Antivirus on Windows, macOS, and Linux for engine builds before 8.3.70.56. The CVSS score for this vulnerabili [truncated]
A heap out-of-bounds read vulnerability exists in Avast Antivirus when scanning a malformed zip file containing XML. This issue may allow for Local Execution of Code or Denial-of-Service of the antivirus process. The vulnerability affects Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus on Windows, macOS, and Linux for virus definition builds from 25020100 before 25021208.
A stack overflow vulnerability, CVE-2025-7010, was discovered in Avast Antivirus when scanning a malformed PDF file. This issue may allow a Denial-of-Service (DoS) of the antivirus process. The vulnerability affects Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus on Windows, macOS, and Linux for virus definition builds before VPS 25021208. The affected scanning lo [truncated]
A heap buffer out-of-bounds read vulnerability exists in Avast Antivirus when scanning a malformed Windows PE file. This vulnerability, tracked as CVE-2025-7009, may allow for Local Execution of Code or Denial-of-Service of the antivirus process. The issue affects multiple products including Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus on Windows, macOS, and Li [truncated]
A heap buffer out-of-bounds read vulnerability exists in Avast Antivirus when scanning a malformed Windows PE file with .NET metadata. This vulnerability, tracked as CVE-2025-7008, may allow for Local Execution of Code or Denial-of-Service of the antivirus process. The issue affects multiple products, including Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus, acro [truncated]
A use of stack memory after free vulnerability in Avast Antivirus may allow Denial-of-Service of the antivirus process when scanning a malformed Windows PE file. This issue affects Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus on Windows, macOS, and Linux for virus definition builds before VPS 25022500.
A medium-severity vulnerability, CVE-2025-7005, was found in Avast Antivirus when scanning a malformed Windows PE file, potentially leading to Denial-of-Service of the antivirus process. This issue affects Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus on Windows, macOS, and Linux for virus definition builds before VPS 25031700. The affected scanning logic is del [truncated]
A heap buffer out-of-bounds write vulnerability exists in Avast Antivirus when scanning a malformed Windows PE file. This issue may allow for Local Execution of Code or Denial-of-Service of the antivirus process. The vulnerability affects Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus on Windows, macOS, and Linux for virus definition builds before VPS 25040308.
A heap buffer out-of-bounds read vulnerability was discovered in the Avira Antivirus engine. This issue occurs when the engine scans a malformed PDF file, potentially allowing for Local Execution of Code or Denial-of-Service of the antivirus engine process. The vulnerability affects Avira Antivirus on Windows, macOS, and Linux for engine builds before 8.3.70.56. The CVSS score for this vulnerability is 7. [truncated]
A heap buffer out-of-bounds read vulnerability was discovered in the Avira Antivirus engine when scanning a malformed PDF file. This issue, tracked as CVE-2025-7002, may allow for Local Execution of Code or Denial-of-Service of the antivirus engine process. The vulnerability affects Avira Antivirus on Windows, macOS, and Linux for engine builds before 8.3.70.68. The CVSS score for this vulnerability is 7. [truncated]