CVE-2019-3970
MEDIUMComodo Antivirus <= 12.0.0.6810 - Arbitrary File Write via Cavwp.exe Database Handling
Title source: llmDescription
Comodo Antivirus versions up to 12.0.0.6810 are vulnerable to Arbitrary File Write due to Cavwp.exe handling of Comodo's Antivirus database. Cavwp.exe loads Comodo antivirus definition database in unsecured global section objects, allowing a local low privileged process to modify this data directly and change virus signatures.
References (1)
Core 1
Core References
Exploit, Third Party Advisory x_refsource_misc
https://www.tenable.com/security/research/tra-2019-34
Scores
CVSS v3
5.5
EPSS
0.0040
EPSS Percentile
31.8%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Details
CWE
CWE-668
Status
published
Products (1)
comodo/antivirus
< 12.0.0.6810
Published
Jul 17, 2019
Tracked Since
Feb 18, 2026