970 matches found
Bitdefender BOX 安全漏洞
Bitdefender BOX is a smart home security control device from Bitdefender, Romania. A security vulnerability exists in Bitdefender BOX versions 1.3.11.490 through 1.3.11.505, which stems from the use of an insecure HTTP protocol to download assets, which could lead to man-in-the-middle attacks and...
PT-2025-11033 · Bitdefender · Bitdefender Box
Name of the Vulnerable Software and Affected Versions: Bitdefender Box versions 1.3.11.490 through 1.3.11.505 Description: The issue concerns the use of the insecure HTTP protocol to download assets over the Internet for updating and restarting daemons and detection rules on devices. Updates can ...
PT-2025-11032 · Bitdefender · Bitdefender Box
Name of the Vulnerable Software and Affected Versions: Bitdefender Box 1 version 1.3.11.490 Description: A command injection vulnerability exists in the "/check image and trigger recovery" API endpoint, allowing an unauthenticated, network-adjacent attacker to execute arbitrary commands on the...
PT-2025-11031 · Bitdefender · Bitdefender Box
Name of the Vulnerable Software and Affected Versions: Bitdefender Box 1 versions 1.3.52.928 and below Description: An improper access control issue exists that allows an unauthenticated attacker to downgrade the device's firmware to an older, potentially vulnerable version of a Bitdefender-signe...
CVE-2024-31684
Incorrect access control in the fingerprint authentication mechanism of Bitdefender Mobile Security v4.11.3-gms allows attackers to bypass fingerprint authentication due to the use of a deprecated API...
CVE-2020-8094
An untrusted search path vulnerability in testinitsigs.exe as used in Bitdefender Antivirus Free 2020 allows a low-privilege attacker to execute code as SYSTEM via a specially crafted DLL file...
CVE-2020-8094 Untrusted Search Path Vulnerability in Bitdefender Antivirus Free 2020 (VA-8422)
An untrusted search path vulnerability in testinitsigs.exe as used in Bitdefender Antivirus Free 2020 allows a low-privilege attacker to execute code as SYSTEM via a specially crafted DLL file...
CVE-2020-8094
The CVE-2020-8094 entry concerns Bitdefender Antivirus Free 2020. The vulnerability is an untrusted search path issue in testinitsigs.exe , which can be exploited by a local attacker to achieve code execution as SYSTEM via a specially crafted DLL. The root cause is a vulnerable search-path handli...
CVE-2020-8094 Untrusted Search Path Vulnerability in Bitdefender Antivirus Free 2020 (VA-8422)
An untrusted search path vulnerability in testinitsigs.exe as used in Bitdefender Antivirus Free 2020 allows a low-privilege attacker to execute code as SYSTEM via a specially crafted DLL file...
Bitdefender Antivirus Free 代码问题漏洞
Bitdefender Antivirus Free is a free version of a suite of antivirus software from the Romanian company Bitdefender that primarily provides cyber threat detection and ransomware protection. Bitdefender Antivirus Free 2020 suffers from a code issue vulnerability that stems from an untrusted search...
PT-2025-1350 · Bitdefender · Bitdefender Antivirus Free 2020
Name of the Vulnerable Software and Affected Versions: Bitdefender Antivirus Free 2020 Description: An untrusted search path vulnerability in testinitsigs.exe allows a low-privilege attacker to execute code as SYSTEM via a specially crafted DLL file. This issue enables an attacker to gain elevate...
CVE-2024-11128
A vulnerability in the BitdefenderVirusScanner binary as used in Bitdefender Virus Scanner for MacOS may allow .dynamic library injection DYLD injection without being blocked by AppleMobileFileIntegrity AMFI. This issue is caused by the absence of Hardened Runtime or Library Validation signing...
CVE-2024-11128
A vulnerability in the BitdefenderVirusScanner binary as used in Bitdefender Virus Scanner for MacOS may allow .dynamic library injection DYLD injection without being blocked by AppleMobileFileIntegrity AMFI. This issue is caused by the absence of Hardened Runtime or Library Validation signing...
CVE-2024-11128 Insufficient Hardened Runtime or Library Validation signing in Bitdefender Virus Scanner for macOS
A vulnerability in the BitdefenderVirusScanner binary as used in Bitdefender Virus Scanner for MacOS may allow .dynamic library injection DYLD injection without being blocked by AppleMobileFileIntegrity AMFI. This issue is caused by the absence of Hardened Runtime or Library Validation signing...
CVE-2024-11128
CVE-2024-11128 affects Bitdefender Virus Scanner for macOS prior to version 3.18. The issue arises from the absence of Hardened Runtime or Library Validation signing, enabling .dynamic library (DYLD) injection that AMFI does not block. Connected data confirms the product and root cause; no public...
CVE-2024-11128 Insufficient Hardened Runtime or Library Validation signing in Bitdefender Virus Scanner for macOS
A vulnerability in the BitdefenderVirusScanner binary as used in Bitdefender Virus Scanner for MacOS may allow .dynamic library injection DYLD injection without being blocked by AppleMobileFileIntegrity AMFI. This issue is caused by the absence of Hardened Runtime or Library Validation signing...
Bitdefender Virus Scanner 安全漏洞
Bitdefender Virus Scanner is a virus scanner program from Bitdefender. A security vulnerability exists in Bitdefender Virus Scanner versions prior to 3.18, which stems from the lack of a Hardened Runtime or Library Validation signature and may allow dynamic library injection...
Malicious code in bitdefender-sitemap-creator (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7295547491c683880b2a5219679629caebf543d6787c220aa1abcca681af64f3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-11314 Malicious code in bitdefender-sitemap-creator (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7295547491c683880b2a5219679629caebf543d6787c220aa1abcca681af64f3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Bitdefender Finds New ShrinkLocker Ransomware, Releases Its Decryptor Tool
Bitdefender has released a free decryptor for ShrinkLocker ransomware, which exploits Windows BitLocker to encrypt systems. Discover all…...