CVE-2022-4294 HIGH

CVE-2022-4294: Norton, Avira, Avast and AVG Antivirus for Windows Privilege Escalation

Vendor Nortonlifelock (Gendigital)
Product Norton Antivirus Windows Eraser Engine
Weakness CWE-269
Published January 10, 2023
Last update April 8, 2025

CVSS base score

7.1/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality None
Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

What the vulnerability does

01Description

Norton, Avira, Avast and AVG Antivirus for Windows may be susceptible to a Privilege Escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user.

Key dates

02Disclosure timeline

January 10, 2023 CVE published
April 8, 2025 Record updated