CVE-2019-3970

MEDIUM

Comodo Antivirus < 12.0.0.6810 - Exposure to Wrong Actor

Title source: rule

Description

Comodo Antivirus versions up to 12.0.0.6810 are vulnerable to Arbitrary File Write due to Cavwp.exe handling of Comodo's Antivirus database. Cavwp.exe loads Comodo antivirus definition database in unsecured global section objects, allowing a local low privileged process to modify this data directly and change virus signatures.

References (1)

[Exploit, Third Party Advisory] https://www.tenable.com/security/research/tra-2019-34

Scores

CVSS v3 5.5

EPSS 0.0005

EPSS Percentile 14.8%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Classification

CWE

CWE-668

Status published

Affected Products (1)

comodo/antivirus < 12.0.0.6810

Timeline

Published Jul 17, 2019

Tracked Since Feb 18, 2026