CVE-2024-13962 – Avast Cleanup Premium Link Following Local Privilege Escalation Vulnerability

May 9, 2025

CVE ID : CVE-2024-13962

Published : May 9, 2025, 4:15 p.m. | 3 hours, 23 minutes ago

Description : Link Following Local Privilege Escalation Vulnerability in TuneupSvc in Gen Digital Inc. Avast Cleanup Premium Version 24.2.16593.17810 on Windows 10 Pro x64 allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM via creating a symbolic link and leveraging a TOCTTOU (time-of-check to time-of-use) attack.

Severity: 7.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2024-9524 – Avira Prime Link Following Local Privilege Escalation Vulnerability

Next Article Kurento is a WebRTC media server

Google’s Agent2Agent protocol finds new home at the Linux Foundation

Decoding The SVG path Element: Curve And Arc Commands

This week in AI dev tools: Gemini 2.5 Pro and Flash GA, GitHub Copilot Spaces, and more (June 20, 2025)

Gemini 2.5 Pro and Flash are generally available and Gemini 2.5 Flash-Lite preview is announced

Summer Game Fest had a bit of a “weird” vibe this year — an extremely mixed bag of weak presentations and interesting titles

The Lenovo Legion Go 2 gets its first release date tease, which could be accurate — but treat with the biggest pinch of salt

Denmark will stick with Windows — government still plans to ditch Microsoft Office

OneDrive user locked out of “30 years worth of photos and work” without any support — calls Microsoft a “Kafkaesque black hole”

Best PHP Project for Final Year Students: Learn, Build, and get Successful with PHPGurukul

Best PHP Project for Final Year Students: Learn, Build, and get Successful with PHPGurukul

Community News: Latest PECL Releases (06.24.2025)

JSON module scripts are now Baseline Newly Available

Summer Game Fest had a bit of a “weird” vibe this year — an extremely mixed bag of weak presentations and interesting titles

Summer Game Fest had a bit of a “weird” vibe this year — an extremely mixed bag of weak presentations and interesting titles

The Lenovo Legion Go 2 gets its first release date tease, which could be accurate — but treat with the biggest pinch of salt

Denmark will stick with Windows — government still plans to ditch Microsoft Office

CVE-2024-13962 – Avast Cleanup Premium Link Following Local Privilege Escalation Vulnerability

Multiple vulnerabilities in Sitecore CMS | Kaspersky official blog

Don’t panic, but it’s only a matter of time before critical ‘CitrixBleed 2’ is under attack

CVE-2024-13613 – Wise Chat WordPress Sensitive Information Exposure

CVE-2025-44614 – Tinxy WiFi Lock Controller Plaintext Storage Vulnerability

Microsoft doc says recycle Windows 10 PCs if they can’t upgrade to Windows 11

This hidden Android feature lets me hit pause on distracting apps – how it works

The Next-Gen AIOps Doctor Is In: Diagnosing Mainframe Issues Quickly and Intelligently

CVE-2024-13090 – Apache Sudo Privilege Escalation Vulnerability

This AI Paper Introduces Effective State-Size (ESS): A Metric to Quantify Memory Utilization in Sequence Models for Performance Optimization

CVE-2025-35939 – Craft CMS Unauthenticated Session File Injection Vulnerability

CVE-2024-13962 – Avast Cleanup Premium Link Following Local Privilege Escalation Vulnerability

Related Posts