Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bitdefender vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-2830
Deserialization of Untrusted Data vulnerability in the message processing component of Bitdefender GravityZone Console allows an malicious user to pass unsafe commands to the environment. This issue affects: Bitdefender GravityZone Console On-Premise versions before 6.29.2-1. Bit...
Bitdefender Gravityzone
3.6
CVSSv2
CVE-2021-3641
Improper Link Resolution Before File Access ('Link Following') vulnerability in the EPAG component of Bitdefender Endpoint Security Tools for Windows allows a local malicious user to cause a denial of service. This issue affects: Bitdefender GravityZone version 7.1.2.33...
Bitdefender Gravityzone
5
CVSSv2
CVE-2008-6661
Multiple integer overflows in the scanning engine in Bitdefender for Linux 7.60825 and previous versions allow remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a malformed (1) NeoLite and (2) ASProtect packed PE file.
Bitdefender Bitdefender Antivirus
4.3
CVSSv2
CVE-2020-15731
An improper Input Validation vulnerability in the code handling file renaming and recovery in Bitdefender Engines allows an malicious user to write an arbitrary file in a location hardcoded in a specially-crafted malicious file name. This issue affects: Bitdefender Engines versio...
Bitdefender Engines
2.1
CVSSv2
CVE-2020-15734
An Origin Validation Error vulnerability in Bitdefender Safepay allows an malicious user to manipulate the browser's file upload capability into accessing other files in the same directory or sub-directories. This issue affects: Bitdefender Safepay versions before 25.0.7.29.
Bitdefender Safepay
5
CVSSv2
CVE-2014-5350
Multiple directory traversal vulnerabilities in Bitdefender GravityZone prior to 5.1.11.432 allow remote malicious users to read arbitrary files via a (1) .. (dot dot) in the id parameter to webservice/CORE/downloadFullKitEpc/a/1 in the Web Console or (2) %2E%2E (encoded dot dot)...
Bitdefender Gravityzone
1 EDB exploit
2.1
CVSSv2
CVE-2019-17103
An Incorrect Default Permissions vulnerability in the BDLDaemon component of Bitdefender AV for Mac allows an malicious user to elevate permissions to read protected directories. This issue affects: Bitdefender AV for Mac versions before 8.0.0.
Bitdefender Antivirus
5
CVSSv2
CVE-2020-8100
Improper Input Validation vulnerability in the cevakrnl.rv0 module as used in the Bitdefender Engines allows an malicious user to trigger a denial of service while scanning a specially-crafted sample. This issue affects: Bitdefender Bitdefender Engines versions before 7.84063.
Bitdefender Engines
9.3
CVSSv2
CVE-2019-17102
An exploitable command execution vulnerability exists in the recovery partition of Bitdefender BOX 2, version 2.0.1.91. The API method `/api/update_setup` does not perform firmware signature checks atomically, leading to an exploitable race condition (TOCTTOU) that allows arbitra...
Bitdefender Box 2 Firmware
4.9
CVSSv2
CVE-2019-12611
An issue exists in Bitdefender BOX firmware versions prior to 2.1.37.37-34 that affects the general reliability of the product. Specially crafted packets sent to the miniupnpd implementation in result in the device allocating memory without freeing it later. This behavior can cau...
Bitdefender Box Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »