Antivirus is not what’s stopping g remote exploits. For a remote exploit to work you either have to expose ports to the internet (port forwarding) and run a vulnerable service on said port or visit a malicious website with a vulnerable browser. Antivirus won’t protect you from more than a scriptkiddie regardless of whether or not it is a remote exploit
croc