The host is installed with Avast Antivirus before 22.11 or AVG Antivirus before 22.11 and is prone to a time-of-check/time-of-use (TOCTOU) vulnerability. A flaw exists in the application. which fails to properly handle the restore process. Successful exploitation allows attackers to create arbitrary file.