CVE-2025-3500

CRITICAL

Avast Antivirus < 25.3 - Integer Overflow

Title source: rule

Description

Integer Overflow or Wraparound vulnerability in Avast Antivirus (25.1.981.6) on Windows allows Privilege Escalation.This issue affects Antivirus: from 25.1.981.6 before 25.3.

Exploits (2)

github SUSPICIOUS 2 stars

by adminlove520 · pythonpoc

https://github.com/adminlove520/CVE-Poc_All_in_One/tree/main/2025/CVE-2025-3500

View Code ZIP pw:eip

nomisec WORKING POC

by chicken3962 · poc

https://github.com/chicken3962/CVE-2025-3500-Poc

View Code ZIP pw:eip

References (1)

[Not Applicable] https://www.gendigital.com/us/en/contact-us/security-advisories/

Scores

CVSS v3 9.0

EPSS 0.0004

EPSS Percentile 13.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

Details

CWE

CWE-190

Status published

Products (1)

avast/antivirus 25.1.981.6 - 25.3

Published Dec 01, 2025

Tracked Since Feb 18, 2026