CVE-2025-7010: CWE-674 Uncontrolled Recursion in Gen Digital Avast Antivirus
CVE-2025-7010 is a medium severity stack overflow vulnerability caused by uncontrolled recursion in the scanning logic of Gen Digital's Avast Antivirus and related products. This flaw occurs when scanning a specially crafted malformed PDF file, potentially causing a denial-of-service (DoS) condition by crashing the antivirus process. The vulnerability affects multiple Gen Digital antivirus products across Windows, macOS, and Linux platforms when using virus definition builds prior to VPS 25021208. The scanning engine is shared among several Gen Digital products, and the vulnerability is mitigated by updating virus definitions to version VPS 25021208 or later.
AI Analysis
Technical Summary
This vulnerability (CVE-2025-7010) involves uncontrolled recursion in the virus scanning engine used by Gen Digital's Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus. When these products scan a malformed PDF file, the recursion can lead to a stack overflow, resulting in a denial-of-service condition by terminating the antivirus process. The affected scanning logic is delivered via a shared virus definition update stream. Virus definition builds before VPS 25021208 are vulnerable, while builds at or above VPS 25021208 have mitigations applied. The vulnerability impacts multiple operating systems including Windows, macOS, and Linux. No known exploits are reported in the wild.
Potential Impact
Successful exploitation causes denial-of-service by crashing the antivirus process due to stack overflow from uncontrolled recursion. There is no impact on confidentiality or integrity. The availability of the antivirus process is affected, potentially reducing endpoint protection until the antivirus is restarted or updated.
Mitigation Recommendations
Updating virus definitions to version VPS 25021208 or later mitigates this vulnerability. Since the scanning engine is updated through the virus definition stream, maintaining up-to-date virus definitions ensures protection. No additional patches or fixes are indicated beyond updating virus definitions. Users should verify their antivirus virus definition build version and update if it is prior to VPS 25021208.
CVE-2025-7010: CWE-674 Uncontrolled Recursion in Gen Digital Avast Antivirus
Description
CVE-2025-7010 is a medium severity stack overflow vulnerability caused by uncontrolled recursion in the scanning logic of Gen Digital's Avast Antivirus and related products. This flaw occurs when scanning a specially crafted malformed PDF file, potentially causing a denial-of-service (DoS) condition by crashing the antivirus process. The vulnerability affects multiple Gen Digital antivirus products across Windows, macOS, and Linux platforms when using virus definition builds prior to VPS 25021208. The scanning engine is shared among several Gen Digital products, and the vulnerability is mitigated by updating virus definitions to version VPS 25021208 or later.
CVSS v3.1
Score 5.5medium
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability (CVE-2025-7010) involves uncontrolled recursion in the virus scanning engine used by Gen Digital's Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus. When these products scan a malformed PDF file, the recursion can lead to a stack overflow, resulting in a denial-of-service condition by terminating the antivirus process. The affected scanning logic is delivered via a shared virus definition update stream. Virus definition builds before VPS 25021208 are vulnerable, while builds at or above VPS 25021208 have mitigations applied. The vulnerability impacts multiple operating systems including Windows, macOS, and Linux. No known exploits are reported in the wild.
Potential Impact
Successful exploitation causes denial-of-service by crashing the antivirus process due to stack overflow from uncontrolled recursion. There is no impact on confidentiality or integrity. The availability of the antivirus process is affected, potentially reducing endpoint protection until the antivirus is restarted or updated.
Mitigation Recommendations
Updating virus definitions to version VPS 25021208 or later mitigates this vulnerability. Since the scanning engine is updated through the virus definition stream, maintaining up-to-date virus definitions ensures protection. No additional patches or fixes are indicated beyond updating virus definitions. Users should verify their antivirus virus definition build version and update if it is prior to VPS 25021208.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GEN
- Date Reserved
- 2025-07-02T08:18:37.465Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a2c871ae617e2d834ccce22
Added to database: 6/12/2026, 10:24:26 PM
Last enriched: 6/12/2026, 10:40:28 PM
Last updated: 6/13/2026, 1:18:37 AM
Views: 5
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.