Avira Software Updater — known CVE vulnerabilities
Every CVE whose affected-product data names Avira Software Updater, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2019-11396 — CVSS 7.8 (high): An issue was discovered in Avira Free Security Suite 10. The permissive access rights on the SoftwareUpdater folder (files / folders and…
CVE-2020-12463 — CVSS 7.8 (high): An elevation of privilege vulnerability exists in Avira Software Updater before 2.0.6.27476 due to improperly handling file hard links…
CVE-2019-17449 — CVSS 6.7 (medium): Avira Software Updater before 2.0.6.21094 allows a DLL side-loading attack. NOTE: The vendor thinks that this vulnerability is invalid…