CVE-2022-4429

CVSS V2 None CVSS V3 None

Description

Avira Security for Windows contains an unquoted service path which allows attackers with local administrative privileges to cause a Denial of Service. The issue was fixed with Avira Security version 1.1.78

Overview

CVE ID
CVE-2022-4429

Assigner
security@nortonlifelock.com

Vulnerability Status
Analyzed

Published Version
2023-01-10T10:15:13

Last Modified Date
2023-01-13T06:34:42

Weakness Enumerations

CWE	URL
CWE-428	http://cwe.mitre.org/data/definitions/428.html

CPE Configuration (Product)

CPE	Vulnerable	Operator	Version Start	Version End
cpe:2.3:a:avira:avira_security::::::windows::*	1	OR		1.1.78

References

Reference URL	Reference Tags
https://support.norton.com/sp/static/external/tools/security-advisories.html

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2022-4429
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4429

History

Created	Old Value	New Value	Data Type	Notes
2023-01-10 10:17:31				Added to TrackCVE
2023-01-10 10:17:32			Weakness Enumeration	new
2023-01-10 14:18:53		2023-01-10T13:36:03	CVE Modified Date	updated
2023-01-10 14:18:53	Received	Awaiting Analysis	Vulnerability Status	updated
2023-01-12 21:14:58	Awaiting Analysis	Undergoing Analysis	Vulnerability Status	updated
2023-01-13 09:16:52		2023-01-13T06:34:42	CVE Modified Date	updated
2023-01-13 09:16:52	Undergoing Analysis	Analyzed	Vulnerability Status	updated
2023-01-13 09:16:56			CPE Information	updated