CVE-2025-7007 | THREATINT

Description

NULL Pointer Dereference vulnerability in Avast Antivirus on MacOS, Avast Anitvirus on Linux when scanning a malformed Windows PE file causes the antivirus process to crash.This issue affects Antivirus: 16.0.0; Anitvirus: 3.0.3.

PUBLISHED Reserved 2025-07-02 | Published 2025-12-01 | Updated 2025-12-01 | Assigner NLOK

HIGH: 7.5CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H

Problem types

CWE-476 NULL Pointer Dereference

Product status

Default status

unaffected

16.0.0 (custom)

affected

Default status

unaffected

3.0.3

affected

Credits

Mike Zhang reporter

References

www.gendigital.com/us/en/contact-us/security-advisories/

cve.org (CVE-2025-7007)

nvd.nist.gov (CVE-2025-7007)

Download JSON