cve/2022/CVE-2022-4291.md

### [CVE-2022-4291](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4291)
![](https://img.shields.io/static/v1?label=Product&message=Avast%20Antivirus&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3D%200%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-119%20Improper%20Restriction%20of%20Operations%20within%20the%20Bounds%20of%20a%20Memory%20Buffer&color=brighgreen)

### Description

The aswjsflt.dll library from Avast Antivirus windows contained a potentially exploitable heap corruption vulnerability that could enable an attacker to bypass the sandbox of the application it was loaded into, if applicable. This issue was fixed in version 18.0.1478 of the Script Shield Component.

### POC

#### Reference
- https://support.norton.com/sp/static/external/tools/security-advisories.html

#### Github
No PoCs found on GitHub currently.
Update Sat May 25 21:48:12 CEST 2024 2024-05-25 21:48:12 +02:00			`### [CVE-2022-4291](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4291)`
			`![](https://img.shields.io/static/v1?label=Product&message=Avast%20Antivirus&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=%3D%200%20&color=brighgreen)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-119%20Improper%20Restriction%20of%20Operations%20within%20the%20Bounds%20of%20a%20Memory%20Buffer&color=brighgreen)`

			`### Description`

			`The aswjsflt.dll library from Avast Antivirus windows contained a potentially exploitable heap corruption vulnerability that could enable an attacker to bypass the sandbox of the application it was loaded into, if applicable. This issue was fixed in version 18.0.1478 of the Script Shield Component.`

			`### POC`

			`#### Reference`
			`- https://support.norton.com/sp/static/external/tools/security-advisories.html`

			`#### Github`
			`No PoCs found on GitHub currently.`