Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bitdefender vulnerabilities and exploits
(subscribe to this query)
409
VMScore
CVE-2021-3960
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in the UpdateServer component of Bitdefender GravityZone allows an malicious user to execute arbitrary code on vulnerable instances. This issue affects Bitdefender GravityZone v...
Bitdefender Gravityzone
NA
CVE-2022-2830
Deserialization of Untrusted Data vulnerability in the message processing component of Bitdefender GravityZone Console allows an malicious user to pass unsafe commands to the environment. This issue affects: Bitdefender GravityZone Console On-Premise versions before 6.29.2-1. Bit...
Bitdefender Gravityzone
641
VMScore
CVE-2019-12612
An issue exists in Bitdefender BOX firmware versions prior to 2.1.37.37-34 that allows an malicious user to pass arbitrary code to the BOX appliance via the web API. In order to exploit this vulnerability, an attacker needs presence in Bitdefender BOX setup network and Bitdefende...
Bitdefender Box Firmware
445
VMScore
CVE-2020-8100
Improper Input Validation vulnerability in the cevakrnl.rv0 module as used in the Bitdefender Engines allows an malicious user to trigger a denial of service while scanning a specially-crafted sample. This issue affects: Bitdefender Bitdefender Engines versions before 7.84063.
Bitdefender Engines
445
VMScore
CVE-2020-8110
A vulnerability has been discovered in the ceva_emu.cvd module that results from a lack of proper validation of user-supplied data, which can result in a pointer that is fetched from uninitialized memory. This can lead to denial-of-service. This issue affects: Bitdefender Engines...
Bitdefender Engines
510
VMScore
CVE-2004-1947
The AVXSCANONLINE.AvxScanOnlineCtrl.1 ActiveX control in BitDefender Scan Online allows remote malicious users to (1) obtain sensitive information such as system drives and contents or (2) use the RequestFile method to download and execute arbitrary code via an object codebase th...
Softwin Bitdefender
2 EDB exploits
668
VMScore
CVE-2021-3823
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in the UpdateServer component of Bitdefender GravityZone allows an malicious user to execute arbitrary code on vulnerable instances. This issue affects: Bitdefender GravityZone ...
Bitdefender Gravityzone
445
VMScore
CVE-2021-3959
A Server-Side Request Forgery (SSRF) vulnerability in the EPPUpdateService component of Bitdefender Endpoint Security Tools allows an malicious user to proxy requests to the relay server. This issue affects: Bitdefender Bitdefender GravityZone versions before 3.3.8.272
Bitdefender Gravityzone
890
VMScore
CVE-2017-8931
Bitdefender GravityZone VMware appliance prior to 6.2.1-35 might allow malicious users to gain access with root privileges via unspecified vectors.
Bitdefender Gravityzone
505
VMScore
CVE-2014-5350
Multiple directory traversal vulnerabilities in Bitdefender GravityZone prior to 5.1.11.432 allow remote malicious users to read arbitrary files via a (1) .. (dot dot) in the id parameter to webservice/CORE/downloadFullKitEpc/a/1 in the Web Console or (2) %2E%2E (encoded dot dot)...
Bitdefender Gravityzone
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
XXE
CVE-2024-34490
SQL injection
CVE-2024-34488
CVE-2024-4507
CVE-2023-7028
CVE-2024-23187
TCP
CVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »