Mac OS, vulnerabilities,CVE-2022-28964 and CVE-2022-28965

Avast Mac Security
1

Hello: I am learning how to use an MDM (Action1). I installed Avast Security ver 15.9.2 on my Mac (Ventura 13.7.3) and the MDM reported two vulnerabilities associated with Avast .
CVE-2022-28964 and CVE-2022-28965. There doesn’t appear to be any remediation for them. I am surprised that a new clean install would result in a report of a CVE from 3 years ago. Is this normal? Is the standard remediation to then just acknowledge that they exist and move on? Since I initially posted this inquiry, about a month ago in a different channel, I have found the same vulnerability report for Avast with MacOS Sonoma and Sequoia.

2

I can close my own ticket. :wink: MacOS, Avast, CVE-2022-28964,

I have been able to remediate most of the MacOS reported vulnerabilities by

1.  Running updates
2.  Removing an application (GarageBand for example)
3.  Removing an old client and installing the current client (OpenVPN as an example.)

Solution 1 and 3 do not work for the Avast client. It appears that to remediate the Avast vulnerability we need to upgrade to a licensed version of Avast. Or we need to accept the risk.

Source: CVE-2022-28964: Avast Premium Security Arbitrary File Write Vulnerability

"Mitigation and Prevention

To address and prevent the exploitation of CVE-2022-28964, follow these guidelines.

Immediate Steps to Take

Update Avast Premium Security to version v21.11.2500 (build 21.11.6809.528) or later.

Monitor for any abnormal system behavior that may indicate a potential DoS attack.

Long-Term Security Practices

Regularly update software and security patches to mitigate known vulnerabilities.

Implement network segmentation and limitations on file write permissions to prevent unauthorized access.

Patching and Updates

Avast has released version v21.11.2500 (build 21.11.6809.528) to address this vulnerability. Ensure all systems running Avast Premium Security are updated to the latest version to prevent exploitation of CVE-2022-28964."
CVE-2022-28964: Avast Premium Security Arbitrary File Write Vulnerability
Learn about CVE-2022-28964, an arbitrary file write vulnerability in Avast Premium Security allowing attackers to trigger a Denial of Service (DoS) via a crafted DLL file.