Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bitdefender antivirus vulnerabilities and exploits
(subscribe to this query)
107
VMScore
CVE-2005-1286
Unquoted Windows search path vulnerability in BitDefender 8 allows local users to prevent BitDefender from starting by creating a malicious C:\program.exe, possibly due to the lack of quoting of the full pathname when executing a process.
Softwin Bitdefender Antivirus Standard 8
Softwin Bitdefender Antivirus Professional Plus 8
935
VMScore
CVE-2007-5775
Unspecified vulnerability in BitDefender allows malicious users to execute arbitrary code via unspecified vectors, aka EEYEB-20071024. NOTE: as of 20071029, the only disclosure is a vague pre-advisory with no actionable information. However, since it is from a well-known research...
Bitdefender Internet Security
Bitdefender Antivirus
Bitdefender Total Security
1 EDB exploit
890
VMScore
CVE-2006-6627
Integer overflow in the packed PE file parsing implementation in BitDefender products prior to 20060829, including Antivirus, Antivirus Plus, Internet Security, Mail Protection for Enterprises, and Online Scanner; and BitDefender products for Microsoft ISA Server and Exchange 5.5...
Softwin Bitdefender Antivirus
Softwin Bitdefender Antivirus Plus
Softwin Bitdefender Isa Server
Softwin Bitdefender Online Scanner
Softwin Bitdefender Ms Exchange 2000
Softwin Bitdefender Ms Exchange 2003
Softwin Bitdefender Ms Exchange 5.5
Softwin Bitdefender Internet Security
Softwin Bitdefender Mail Protection Enterprises
NA
CVE-2022-0357
Unquoted Search Path or Element vulnerability in the Vulnerability Scan component of Bitdefender Total Security, Bitdefender Internet Security, and Bitdefender Antivirus Plus allows an malicious user to elevate privileges to SYSTEM. This issue affects: Bitdefender Total Security ...
Bitdefender Total Security
Bitdefender Internet Security
Bitdefender Antivirus Plus
641
VMScore
CVE-2017-6186
Code injection vulnerability in Bitdefender Total Security 12.0 (and previous versions), Internet Security 12.0 (and previous versions), and Antivirus Plus 12.0 (and previous versions) allows a local malicious user to bypass a self-protection mechanism, inject arbitrary code, and...
Bitdefender Internet Security
Bitdefender Antivirus Plus
Bitdefender Total Security
1 Article
445
VMScore
CVE-2020-15732
Improper Certificate Validation vulnerability in the Online Threat Prevention module as used in Bitdefender Total Security allows an malicious user to potentially bypass HTTP Strict Transport Security (HSTS) checks. This issue affects: Bitdefender Total Security versions before 2...
Bitdefender Antivirus Plus
Bitdefender Internet Security
Bitdefender Total Security
392
VMScore
CVE-2020-8107
A Process Control vulnerability in ProductAgentUI.exe as used in Bitdefender Antivirus Plus allows an malicious user to tamper with product settings via a specially crafted DLL file. This issue affects: Bitdefender Antivirus Plus versions before 24.0.26.136. Bitdefender Internet ...
Bitdefender Antivirus Plus
Bitdefender Internet Security
Bitdefender Total Security
187
VMScore
CVE-2019-17103
An Incorrect Default Permissions vulnerability in the BDLDaemon component of Bitdefender AV for Mac allows an malicious user to elevate permissions to read protected directories. This issue affects: Bitdefender AV for Mac versions before 8.0.0.
Bitdefender Antivirus
187
VMScore
CVE-2020-8092
A privilege escalation vulnerability in BDLDaemon as used in Bitdefender Antivirus for Mac allows a local malicious user to obtain authentication tokens for requests submitted to the Bitdefender Cloud. This issue affects: Bitdefender Bitdefender Antivirus for Mac versions before ...
Bitdefender Antivirus
409
VMScore
CVE-2020-8093
A vulnerability in the AntivirusforMac binary as used in Bitdefender Antivirus for Mac allows an malicious user to inject a library using DYLD environment variable to cause third-party code execution
Bitdefender Antivirus
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
XXE
CVE-2024-34490
SQL injection
CVE-2024-34488
CVE-2024-4507
CVE-2023-7028
CVE-2024-23187
TCP
CVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »