CVE-2025-3500

CRITICAL 9.0

Integer Overflow in Avast Antiviurs 25.1.981.6 on Windows may result in privilege escalation

CVSS Score

9.0

EPSS Score

0.0%

EPSS Percentile

0th

Integer Overflow or Wraparound vulnerability in Avast Antivirus (25.1.981.6) on Windows allows Privilege Escalation.This issue affects Antivirus: from 25.1.981.6 before 25.3.

CWE	CWE-190
Vendor	avast
Product	antivirus
Published	Dec 1, 2025
Last Updated	Feb 26, 2026

Stay Ahead of the Next One

Get instant alerts for avast antivirus

Be the first to know when new critical vulnerabilities affecting avast antivirus are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

Required

Scope

Changed

Confidentiality

High

Integrity

High

Availability

High

Affected Versions

Avast / Antivirus

25.1.981.6 < 25.3

References

NVD ↗ CVE.org ↗ EPSS Data ↗

gendigital.com: https://www.gendigital.com/us/en/contact-us/security-advisories/

Credits

🔍 Baris Akkaya Trend Micro Zero Day Initiative