CVE-2024-7227: CWE-59: Improper Link Resolution Before File Access ('Link Following') in Avast Free Antivirus
Avast Free Antivirus AvastSvc Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Avast Free Antivirus. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Avast Service. By creating a symbolic link, an attacker can abuse the service to delete a file. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. Was ZDI-CAN-22272.
CVE-2024-7227: CWE-59: Improper Link Resolution Before File Access ('Link Following') in Avast Free Antivirus
Description
Avast Free Antivirus AvastSvc Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Avast Free Antivirus. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Avast Service. By creating a symbolic link, an attacker can abuse the service to delete a file. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. Was ZDI-CAN-22272.
Technical Details
- Data Version
- 5.1
- Assigner Short Name
- zdi
- Date Reserved
- 2024-07-29T20:22:38.024Z
- Cvss Version
- 3.0
- State
- PUBLISHED
Threat ID: 699f6c10b7ef31ef0b55f90b
Added to database: 2/25/2026, 9:39:28 PM
Last updated: 2/25/2026, 9:39:37 PM
Views: 1
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Related Threats
CVE-2024-7508: CWE-122: Heap-based Buffer Overflow in Trimble SketchUp Viewer
HighCVE-2024-7503: CWE-288 Authentication Bypass Using an Alternate Path or Channel in WPWeb WooCommerce - Social Login
CriticalCVE-2024-7501: CWE-352 Cross-Site Request Forgery (CSRF) in algoritmika Download Plugins and Themes in ZIP from Dashboard
MediumCVE-2024-7493: CWE-269 Improper Privilege Management in whyun WPCOM Member
CriticalCVE-2024-7492: CWE-352 Cross-Site Request Forgery (CSRF) in mainwp MainWP Child Reports
HighActions
External Links
Need more coverage?
Upgrade to Pro Console in Console -> Billing for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.