CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Openbugbounty•added 2017/11/29 1:50 a.m.•9 views

bitdefender.fr XSS vulnerability

Open Bug Bounty ID: OBB-441162 Description| Value ---|--- Affected Website:| bitdefender.fr Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score

Malwarebytes•added 2017/11/22 6:47 p.m.•17 views

Terdot Trojan likes social media

We usually advise people that have fallen victim to banker Trojans to change all their passwords, especially the ones that are related to their financial sites and apps. Besides the dangers of re-used passwords, there are other reasons why this is important. This advice is especially applicable t...

6.8AI score

Openbugbounty•added 2017/11/22 9:18 a.m.•10 views

bitdefender.com XSS vulnerability

Open Bug Bounty ID: OBB-428801 Description| Value ---|--- Affected Website:| bitdefender.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score

OSV•added 2017/10/31 7:29 p.m.•1 views

CVE-2017-10954

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Bitdefender Internet Security Internet Security 2018 prior to build 7.72918. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a...

8.8CVSS6.2AI score

CVE•added 2017/10/31 7:0 p.m.•59 views

CVE-2017-10954

CVE-2017-10954 affects Bitdefender Internet Security 2018 (before build 7.72918). The flaw is in pdf.xmd and stems from improper validation of user-supplied data, causing an integer overflow during buffer allocation. This can allow remote code execution with SYSTEM privileges when a user visits a...

9.3CVSS8.9AI score0.04021EPSS

Exploits0References2Affected Software1

Cvelist•added 2017/10/31 7:0 p.m.•33 views

CVE-2017-10954

8.9AI score0.04021EPSS

CNVD•added 2017/10/30 12:0 a.m.•0 views

Bitdefender Total Security Local Code Execution Vulnerability (CNVD-2017-35574)

Bitdefender Total Security is a security solution. A local code execution vulnerability exists in Bitdefender Total Security. A local attacker can exploit this issue to execute arbitrary code in the context of an affected application...

7.8AI score

CNVD•added 2017/10/27 12:0 a.m.•1 views

Bitdefender Total Security Local Code Execution Vulnerability

7.8AI score

Zero Day Initiative•added 2017/09/06 12:0 a.m.•67 views

Bitdefender Internet Security PDF Predictor Integer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Bitdefender Internet Security. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

9.3CVSS4.3AI score0.04021EPSS

OpenVAS•added 2017/09/05 12:0 a.m.•23 views

Bitdefender Total Security 'bdfwfpf' Kernel Driver Privilege Escalation Vulnerability

Bitdefender Total Security is prone to a local privilege escalation vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7CVSS7AI score0.00344EPSS

OSV•added 2017/08/29 1:29 p.m.•2 views

CVE-2017-10950

This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of Bitdefender Total Security 21.0.24.62. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists...

7CVSS6.2AI score

Prion•added 2017/08/29 1:29 p.m.•11 views

Design/Logic Flaw

6.9CVSS6.9AI score0.00344EPSS

Exploits0References2Affected Software1

NVD•added 2017/08/29 1:29 p.m.•15 views

CVE-2017-10950

7CVSS7AI score0.00344EPSS

CVE•added 2017/08/29 1:0 p.m.•50 views

CVE-2017-10950

CVE-2017-10950 affects Bitdefender Total Security (bdfwfpf kernel driver). The vulnerability lies in the handling of IOCTL 0x8000E038 where the driver fails to validate the existence of an object before operating on it, enabling a local attacker to execute arbitrary code in the SYSTEM context. Ex...

7CVSS7AI score0.00344EPSS

Exploits0References2Affected Software1

Cvelist•added 2017/08/29 1:0 p.m.•17 views

CVE-2017-10950

7AI score0.00344EPSS

myhack58•added 2017/08/24 12:0 a.m.•30 views

7z's LZMA compression algorithm with Bitdefender heap buffer overflow vulnerability-vulnerability warning-the black bar safety net

Previously, in order to write that article about 7z PPMD compression algorithm vulnerability of the articles, I read a lot of the 7-Zip source code, and found a lot of very valuable information, this information can better help my analysis of anti virus products, vulnerability in it. So, I'm read...

0.6AI score

CNVD•added 2017/08/21 12:0 a.m.•0 views

Bitdefender Internet Security RAR STM Record Integer Overflow Vulnerability

Bitdefender Internet Security is a suite of security protection solutions. An integer overflow vulnerability exists in Bitdefender Internet Security rar.xmd. A remote attacker can exploit the vulnerability by submitting a specially crafted request to execute arbitrary code in the SYSTEM context...

8AI score

CNVD•added 2017/08/21 12:0 a.m.•1 views

Bitdefender Internet Security Inno File Locator Integer Overflow Vulnerability

Bitdefender Internet Security is a suite of security protection solutions. An integer overflow vulnerability exists in Bitdefender Internet Security instyler.xmd. A remote attacker can exploit the vulnerability by submitting a specially crafted request to execute arbitrary code in the SYSTEM...

8AI score

CNVD•added 2017/08/21 12:0 a.m.•0 views

Bitdefender Internet Security Inno Header String Integer Overflow Vulnerability

8AI score