The aswjsflt.dll library from Avast Antivirus windows contained a potentially exploitable heap corruption vulnerability that could enable an attacker to bypass the sandbox of the application it was loaded into, if applicable. This issue was fixed in version 18.0.1478 of the Script Shield Component.
References
| Link | Resource |
|---|---|
| https://support.norton.com/sp/static/external/tools/security-advisories.html | Vendor Advisory |
Configurations
History
07 Nov 2023, 03:57
| Type | Values Removed | Values Added |
|---|---|---|
| Summary | The aswjsflt.dll library from Avast Antivirus windows contained a potentially exploitable heap corruption vulnerability that could enable an attacker to bypass the sandbox of the application it was loaded into, if applicable. This issue was fixed in version 18.0.1478 of the Script Shield Component. |
27 Jun 2023, 13:23
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | CWE-787 |
12 Dec 2022, 17:22
| Type | Values Removed | Values Added |
|---|---|---|
| References | (MISC) https://support.norton.com/sp/static/external/tools/security-advisories.html - Vendor Advisory | |
| First Time |
Avast script Shield
Avast |
|
| CWE | CWE-119 | |
| CPE | cpe:2.3:a:avast:script_shield:*:*:*:*:*:*:*:* | |
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 10.0 |
08 Dec 2022, 00:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2022-12-08 00:15
Updated : 2023-12-10 14:48
NVD link : CVE-2022-4291
Mitre link : CVE-2022-4291
CVE.ORG link : CVE-2022-4291
JSON object : View
Products Affected
avast
- script_shield