970 matches found
Bitdefender Hypervisor Introspection Code Execution Vulnerability
Bidefender Hypervisor Introspection HVI is a software from Bidefender Romania that checks the memory safety of running virtual machines at the Hypervisor layer using the VM self-test APIs of the Xen and KVM hypervisors. The software blocks code execution in abnormal memory by virtualizing the...
CVE-2020-15294
Compiler Optimization Removal or Modification of Security-critical Code vulnerability in IntPeParseUnwindData results in multiple dereferences to the same pointer. If the pointer is located in memory-mapped from the guest space, this may cause a race-condition where the generated code would...
CVE-2020-15294
Compiler Optimization Removal or Modification of Security-critical Code vulnerability in IntPeParseUnwindData results in multiple dereferences to the same pointer. If the pointer is located in memory-mapped from the guest space, this may cause a race-condition where the generated code would...
Race condition
Compiler Optimization Removal or Modification of Security-critical Code vulnerability in IntPeParseUnwindData results in multiple dereferences to the same pointer. If the pointer is located in memory-mapped from the guest space, this may cause a race-condition where the generated code would...
CVE-2020-15293 Memory corruption in Bitdefender Hypervisor Introspection (VA-9336)
Memory corruption in IntLixCrashDumpDmesg, IntLixTaskFetchCmdLine, IntLixFileReadDentry and IntLixFileGetPath due to insufficient guest-data input validation may lead to denial of service conditions...
CVE-2020-15294
CVE-2020-15294 refers to a vulnerability in Bitdefender Hypervisor Introspection (HVI) prior to version 1.132.2. The root cause is a compiler optimization issue in IntPeParseUnwindData(), which can trigger multiple dereferences of the same pointer—potentially when that pointer is memory-mapped fr...
CVE-2020-15294 Compiler Optimization Removal or Modification of Security-Critical Code vulnerability in Bitdefender Hypervisor Introspection (VA-9339)
Compiler Optimization Removal or Modification of Security-critical Code vulnerability in IntPeParseUnwindData results in multiple dereferences to the same pointer. If the pointer is located in memory-mapped from the guest space, this may cause a race-condition where the generated code would...
CVE-2020-15292 Lack of validation on data read from guest memory in Bitdefender HVI (VA-9333)
Lack of validation on data read from guest memory in IntPeGetDirectory, IntPeParseUnwindData, IntLogExceptionRecord, IntKsymExpandSymbol and IntLixTaskDumpTree may lead to out-of-bounds read or it could cause DoS due to integer-overflor IntPeGetDirectory, TOCTOU IntPeParseUnwindData or insufficie...
Bitdefender Hypervisor Introspection Input Validation Error Vulnerability
Bitdefender Hypervisor Introspection is a Hypervisor Introspection HVI security solution from Bitdefender Romania. It protects business-sensitive data before it is exposed by detecting and blocking cyberattacks in real-time. Bitdefender Hypervisor Introspection suffers from an Input Validation...
Bitdefender Hypervisor Introspection 安全漏洞
Bidefender Hypervisor Introspection HVI is a software from Bidefender Romania that checks the memory safety of running virtual machines at the Hypervisor layer using the VM self-test APIs of the Xen and KVM hypervisors. The software blocks code execution in abnormal memory by virtualizing the...
Bitdefender Hypervisor Introspection Input Validation Error Vulnerability
Bitdefender Hypervisor Introspection is a Hypervisor Introspection HVI security solution from Bitdefender Romania. It protects business-sensitive data before it is exposed by detecting and blocking cyberattacks in real-time. Bitdefender Hypervisor Introspection suffers from an input validation...
Bitdefender Antivirus Plus Access Control Error Vulnerability
Bitdefender Antivirus Plus is a suite of antivirus software from the Romanian company Bitdefender that provides mainly cyber threat detection and ransomware protection. An access control error vulnerability exists in versions prior to Bitdefender Antivirus Plus 25.0.7.29, which stems from a sourc...
CVE-2020-15733
An Origin Validation Error vulnerability in the SafePay component of Bitdefender Antivirus Plus allows a web resource to misrepresent itself in the URL bar. This issue affects: Bitdefender Antivirus Plus versions prior to 25.0.7.29...
CVE-2020-15733
An Origin Validation Error vulnerability in the SafePay component of Bitdefender Antivirus Plus allows a web resource to misrepresent itself in the URL bar. This issue affects: Bitdefender Antivirus Plus versions prior to 25.0.7.29...
Input validation
An Origin Validation Error vulnerability in the SafePay component of Bitdefender Antivirus Plus allows a web resource to misrepresent itself in the URL bar. This issue affects: Bitdefender Antivirus Plus versions prior to 25.0.7.29...
CVE-2020-15733 URL Spoofing Vulnerability in Bitdefender SafePay (VA-8958)
An Origin Validation Error vulnerability in the SafePay component of Bitdefender Antivirus Plus allows a web resource to misrepresent itself in the URL bar. This issue affects: Bitdefender Antivirus Plus versions prior to 25.0.7.29...
CVE-2020-15733
CVE-2020-15733 describes an Origin Validation Error in Bitdefender Antivirus Plus’s SafePay component that allows a web resource to misrepresent itself in the browser URL bar. Connected documents confirm the vulnerability affects Bitdefender Antivirus Plus versions prior to 25.0.7.29. The root ca...
Bitdefender Antivirus Plus 访问控制错误漏洞
Bitdefender Antivirus Plus is a suite of antivirus software from the Romanian company Bitdefender that provides mainly cyber threat detection and ransomware protection. An access control error vulnerability exists in versions prior to Bitdefender Antivirus Plus 25.0.7.29, which stems from a sourc...
Vulnerability fixed in Bitdefender update server
A vulnerability in Bitdefender Update Server and BEST Relay components of Bitdefender Endpoint Security Tools allows an unauthorized malicious party to bypass internal measures and communicate with hosts on the network. Bitdefender has released an update. For more information, see:...
CVE-2020-15297
Insufficient validation in the Bitdefender Update Server and BEST Relay components of Bitdefender Endpoint Security Tools versions prior to 6.6.20.294 allows an unprivileged attacker to bypass the in-place mitigations and interact with hosts on the network. This issue affects: Bitdefender Update...