Path traversal

2021-12-1615:15:00

PRIOn knowledge base

www.prio-n.com

0.0004 Low

EPSS

Percentile

9.9%

JSON

Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’) vulnerability in the UpdateServer component of Bitdefender GravityZone allows an attacker to execute arbitrary code on vulnerable instances. This issue affects Bitdefender GravityZone versions prior to 3.3.8.272

CPENameOperatorVersion
gravityzonelt3.3.8.272

CPE	Name	Operator	Version
	gravityzone	lt	3.3.8.272

References

www.bitdefender.com/support/security-advisories/privilege-escalation-via-the-gravityzone-productmanager-updateserver-kitsmanager-api-va-10146

0.0004 Low

EPSS

Percentile

9.9%

JSON

Related for PRION:CVE-2021-3960