Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bitdefender total security vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2020-8102
Improper Input Validation vulnerability in the Safepay browser component of Bitdefender Total Security 2020 allows an external, specially crafted web page to run remote commands inside the Safepay Utility process. This issue affects Bitdefender Total Security 2020 versions before...
Bitdefender Total Security 2020
2 Articles
7.8
CVSSv3
CVE-2022-0357
Unquoted Search Path or Element vulnerability in the Vulnerability Scan component of Bitdefender Total Security, Bitdefender Internet Security, and Bitdefender Antivirus Plus allows an malicious user to elevate privileges to SYSTEM. This issue affects: Bitdefender Total Security ...
Bitdefender Total Security
Bitdefender Internet Security
Bitdefender Antivirus Plus
7.8
CVSSv3
CVE-2021-4199
Incorrect Permission Assignment for Critical Resource vulnerability in the crash handling component BDReinit.exe as used in Bitdefender Total Security, Internet Security, Antivirus Plus, Endpoint Security Tools for Windows allows a remote malicious user to escalate local privileg...
Bitdefender Total Security
Bitdefender Internet Security
Bitdefender Antivirus Plus
Bitdefender Endpoint Security Tools
7.8
CVSSv3
CVE-2020-8107
A Process Control vulnerability in ProductAgentUI.exe as used in Bitdefender Antivirus Plus allows an malicious user to tamper with product settings via a specially crafted DLL file. This issue affects: Bitdefender Antivirus Plus versions before 24.0.26.136. Bitdefender Internet ...
Bitdefender Total Security
Bitdefender Internet Security
Bitdefender Antivirus Plus
7.8
CVSSv3
CVE-2021-3576
Execution with Unnecessary Privileges vulnerability in Bitdefender Endpoint Security Tools, Total Security allows a local malicious user to elevate to 'NT AUTHORITY\System. Impersonation enables the server thread to perform actions on behalf of the client but within the limi...
Bitdefender Endpoint Security Tools
Bitdefender Total Security
7.8
CVSSv3
CVE-2021-3579
Incorrect Default Permissions vulnerability in the bdservicehost.exe and Vulnerability.Scan.exe components as used in Bitdefender Endpoint Security Tools for Windows, Total Security allows a local malicious user to elevate privileges to NT AUTHORITY\SYSTEM This issue affects: Bit...
Bitdefender Total Security
Bitdefender Endpoint Security Tools
7.8
CVSSv3
CVE-2018-6183
BitDefender Total Security 2018 allows local users to gain privileges or cause a denial of service by impersonating all the pipes through a use of an "insecurely created named pipe". Ensures full access to Everyone users group.
Bitdefender Total Security 2018
7.5
CVSSv3
CVE-2020-15732
Improper Certificate Validation vulnerability in the Online Threat Prevention module as used in Bitdefender Total Security allows an malicious user to potentially bypass HTTP Strict Transport Security (HSTS) checks. This issue affects: Bitdefender Total Security versions before 2...
Bitdefender Antivirus Plus
Bitdefender Total Security
Bitdefender Internet Security
7
CVSSv3
CVE-2017-10950
This vulnerability allows local malicious users to execute arbitrary code on vulnerable installations of Bitdefender Total Security 21.0.24.62. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. Th...
Bitdefender Total Security 21.0.24.62
6.7
CVSSv3
CVE-2019-14242
An issue exists in Bitdefender products for Windows (Bitdefender Endpoint Security Tool versions before 6.6.8.115; and Bitdefender Antivirus Plus, Bitdefender Internet Security, and Bitdefender Total Security versions before 23.0.24.120) that can lead to local code injection. A l...
Bitdefender Antivirus Plus
Bitdefender Endpoint Security Tool
Bitdefender Internet Security
Bitdefender Total Security
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »