Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bitdefender endpoint security vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2020-8097
An improper authentication vulnerability in Bitdefender Endpoint Security Tools for Windows and Bitdefender Endpoint Security SDK allows an unprivileged local malicious user to escalate privileges or tamper with the product's security settings. This issue affects: Bitdefende...
Bitdefender Endpoint Security
Bitdefender Endpoint Security Tools
6.7
CVSSv3
CVE-2019-14242
An issue exists in Bitdefender products for Windows (Bitdefender Endpoint Security Tool versions before 6.6.8.115; and Bitdefender Antivirus Plus, Bitdefender Internet Security, and Bitdefender Total Security versions before 23.0.24.120) that can lead to local code injection. A l...
Bitdefender Antivirus Plus
Bitdefender Endpoint Security Tool
Bitdefender Internet Security
Bitdefender Total Security
7.8
CVSSv3
CVE-2021-4199
Incorrect Permission Assignment for Critical Resource vulnerability in the crash handling component BDReinit.exe as used in Bitdefender Total Security, Internet Security, Antivirus Plus, Endpoint Security Tools for Windows allows a remote malicious user to escalate local privileg...
Bitdefender Total Security
Bitdefender Internet Security
Bitdefender Antivirus Plus
Bitdefender Endpoint Security Tools
7.8
CVSSv3
CVE-2021-3579
Incorrect Default Permissions vulnerability in the bdservicehost.exe and Vulnerability.Scan.exe components as used in Bitdefender Endpoint Security Tools for Windows, Total Security allows a local malicious user to elevate privileges to NT AUTHORITY\SYSTEM This issue affects: Bit...
Bitdefender Total Security
Bitdefender Endpoint Security Tools
7.8
CVSSv3
CVE-2021-3576
Execution with Unnecessary Privileges vulnerability in Bitdefender Endpoint Security Tools, Total Security allows a local malicious user to elevate to 'NT AUTHORITY\System. Impersonation enables the server thread to perform actions on behalf of the client but within the limi...
Bitdefender Endpoint Security Tools
Bitdefender Total Security
6.1
CVSSv3
CVE-2021-4198
A NULL Pointer Dereference vulnerability in the messaging_ipc.dll component as used in Bitdefender Total Security, Internet Security, Antivirus Plus, Endpoint Security Tools, VPN Standalone allows an malicious user to arbitrarily crash product processes and generate crashdump fil...
Bitdefender Vpn Standalone
Bitdefender Total Security
Bitdefender Internet Security
Bitdefender Antivirus Plus
Bitdefender Endpoint Security Tools
7.5
CVSSv3
CVE-2022-0677
Improper Handling of Length Parameter Inconsistency vulnerability in the Update Server component of Bitdefender Endpoint Security Tools (in relay role), GravityZone (in Update Server role) allows an malicious user to cause a Denial-of-Service. This issue affects: Bitdefender Upda...
Bitdefender Endpoint Security Tools
Bitdefender Update Server
Bitdefender Gravityzone
8.8
CVSSv3
CVE-2020-8108
Improper Authentication vulnerability in Bitdefender Endpoint Security for Mac allows an unprivileged process to restart the main service and potentially inject third-party code into a trusted process. This issue affects: Bitdefender Endpoint Security for Mac versions before 4.12...
Bitdefender Endpoint Security
10
CVSSv3
CVE-2021-3554
Improper Access Control vulnerability in the patchesUpdate API as implemented in Bitdefender Endpoint Security Tools for Linux as a relay role allows an malicious user to manipulate the remote address used for pulling patches. This issue affects: Bitdefender Endpoint Security Too...
Bitdefender Gravityzone 6.24.1-1
Bitdefender Endpoint Security Tools
Bitdefender Gravityzone
7.5
CVSSv3
CVE-2021-3552
A Server-Side Request Forgery (SSRF) vulnerability in the EPPUpdateService component of Bitdefender Endpoint Security Tools allows an malicious user to proxy requests to the relay server. This issue affects: Bitdefender Endpoint Security Tools versions before 6.6.27.390; versions...
Bitdefender Endpoint Security Tools
Bitdefender Gravityzone 6.24.1-1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »