Lucene search
+L

106 matches found

Cvelist
Cvelist
added 2024/10/18 7:38 a.m.18 views

CVE-2023-6057 Insecure Trust of DSA-Signed Certificates in Bitdefender Total Security HTTPS Scanning (VA-11166)

A vulnerability has been discovered in Bitdefender Total Security HTTPS scanning functionality that results in the improper trust of certificates issued using the DSA signature algorithm. The product does not properly check the certificate chain, allowing an attacker to establish MITM SSL...

8.6CVSS0.00217EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/18 7:31 a.m.19 views

CVE-2023-6056 Insecure Trust of Self-Signed Certificates in Bitdefender Total Security HTTPS Scanning (VA-11164)

A vulnerability has been discovered in Bitdefender Total Security HTTPS scanning functionality that results in the improper trust of self-signed certificates. The product is found to trust certificates signed with the RIPEMD-160 hashing algorithm without proper validation, allowing an attacker to...

8.6CVSS0.00217EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/18 7:31 a.m.14 views

CVE-2023-6056 Insecure Trust of Self-Signed Certificates in Bitdefender Total Security HTTPS Scanning (VA-11164)

A vulnerability has been discovered in Bitdefender Total Security HTTPS scanning functionality that results in the improper trust of self-signed certificates. The product is found to trust certificates signed with the RIPEMD-160 hashing algorithm without proper validation, allowing an attacker to...

8.6CVSS7AI score0.00217EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/18 7:17 a.m.13 views

CVE-2023-6055 Improper Certificate Validation in Bitdefender Total Security HTTPS Scanning (VA-11158)

A vulnerability has been identified in Bitdefender Total Security HTTPS scanning functionality where the software fails to properly validate website certificates. Specifically, if a site certificate lacks the "Server Authentication" specification in the Extended Key Usage extension, the product...

8.6CVSS6.6AI score0.00239EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/18 7:17 a.m.17 views

CVE-2023-6055 Improper Certificate Validation in Bitdefender Total Security HTTPS Scanning (VA-11158)

A vulnerability has been identified in Bitdefender Total Security HTTPS scanning functionality where the software fails to properly validate website certificates. Specifically, if a site certificate lacks the "Server Authentication" specification in the Extended Key Usage extension, the product...

8.6CVSS0.00239EPSS
Exploits0References1
CVE
CVE
added 2024/10/18 7:17 a.m.52 views

CVE-2023-6055

CVE-2023-6055 describes a certificate validation flaw in Bitdefender Total Security’s HTTPS scanning. The vulnerability occurs when the site certificate lacks the Extended Key Usage spec for Server Authentication; the product may consider such certificates valid and proceed with TLS interception,...

8.6CVSS7.3AI score0.00239EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/10/18 12:0 a.m.6 views

PT-2024-14868 · Bitdefender · Bitdefender Total Security

Name of the Vulnerable Software and Affected Versions: Bitdefender Total Security affected versions not specified Description: A vulnerability has been discovered in Bitdefender Total Security's HTTPS scanning functionality, resulting in the improper trust of certificates issued using the DSA...

8.6CVSS7AI score0.00217EPSS
Exploits0References12
CNNVD
CNNVD
added 2024/10/18 12:0 a.m.3 views

Bitdefender Total Security 信任管理问题漏洞

Bitdefender Total Security is a proactive threat protection software for PCs from the Romanian company Bitdefender. The software features antivirus, firewall, anti-spyware, privacy control, and parental control. It also includes features such as System TuneUp. A trust management issue vulnerabili...

8.6CVSS6.5AI score0.00179EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/10/18 12:0 a.m.4 views

Bitdefender Total Security 信任管理问题漏洞

Bitdefender Total Security is a proactive threat protection software for PCs from the Romanian company Bitdefender. The software features antivirus, firewall, anti-spyware, privacy control, and parental control. It also includes features such as System TuneUp. A trust management issue vulnerabili...

8.6CVSS6.5AI score0.00209EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/10/18 12:0 a.m.6 views

PT-2024-13750 · Bitdefender · Bitdefender Total Security

Name of the Vulnerable Software and Affected Versions: Bitdefender Total Security versions prior to the latest version Description: A vulnerability has been identified in Bitdefender Total Security HTTPS scanning functionality where the software trusts a certificate issued by an entity that isn't...

8.6CVSS7AI score0.00209EPSS
Exploits0References17
CNNVD
CNNVD
added 2024/10/18 12:0 a.m.3 views

Bitdefender Total Security 信任管理问题漏洞

Bitdefender Total Security is a proactive threat protection software for PCs from the Romanian company Bitdefender. The software features antivirus, firewall, anti-spyware, privacy control, and parental control. It also includes features such as System TuneUp. A trust management issue vulnerabili...

8.6CVSS6.6AI score0.00217EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/10/18 12:0 a.m.5 views

Bitdefender Total Security 信任管理问题漏洞

Bitdefender Total Security is a proactive threat protection software for PCs from the Romanian company Bitdefender. The software features antivirus, firewall, anti-spyware, privacy control, and parental control. It also includes features such as System TuneUp. A trust management issue vulnerabili...

8.6CVSS6.7AI score0.00239EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/10/18 12:0 a.m.5 views

Bitdefender Total Security 信任管理问题漏洞

Bitdefender Total Security is a proactive threat protection software for PCs from the Romanian company Bitdefender. The software features antivirus, firewall, anti-spyware, privacy control, and parental control. It also includes features such as System TuneUp. A trust management issue vulnerabili...

8.6CVSS6.8AI score0.00217EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/10/18 12:0 a.m.18 views

PT-2024-13748 · Bitdefender · Bitdefender Total Security

Name of the Vulnerable Software and Affected Versions: Bitdefender Total Security affected versions not specified Description: A vulnerability has been identified in the Bitdefender Total Security HTTPS scanning functionality where the product incorrectly checks the site's certificate. This allow...

8.6CVSS7AI score0.00179EPSS
Exploits0References8
NVD
NVD
added 2024/04/01 11:15 a.m.27 views

CVE-2023-6154

A configuration setting issue in seccenter.exe as used in Bitdefender Total Security, Bitdefender Internet Security, Bitdefender Antivirus Plus, Bitdefender Antivirus Free allows an attacker to change the product's expected behavior and potentially load a third-party library upon execution. This...

7.8CVSS7.6AI score0.002EPSS
Exploits0References1
NCSC
NCSC
added 2023/05/25 12:0 a.m.9 views

Vulnerability fixed in BitDefender

BitDefender has fixed a vulnerability in Bitdefender Total Security, Bitdefender Internet Security and Bitdefender Antivirus Plus. A malicious person could exploit the vulnerability to grant themselves granted elevated privileges and potentially execute arbitrary code execute arbitrary code with...

7.8CVSS7.7AI score0.00188EPSS
Exploits0
Prion
Prion
added 2023/05/24 8:15 a.m.22 views

Path traversal

Unquoted Search Path or Element vulnerability in the Vulnerability Scan component of Bitdefender Total Security, Bitdefender Internet Security, and Bitdefender Antivirus Plus allows an attacker to elevate privileges to SYSTEM. This issue affects: Bitdefender Total Security versions prior to...

4.3CVSS7.5AI score0.00188EPSS
Exploits0References1Affected Software3
Vulnrichment
Vulnrichment
added 2023/05/24 7:53 a.m.7 views

CVE-2022-0357 Improper Quoting Path Issue in Bitdefender Total Security

Unquoted Search Path or Element vulnerability in the Vulnerability Scan component of Bitdefender Total Security, Bitdefender Internet Security, and Bitdefender Antivirus Plus allows an attacker to elevate privileges to SYSTEM. This issue affects: Bitdefender Total Security versions prior to...

6.7CVSS6.8AI score0.00188EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/05/24 12:0 a.m.5 views

Bitdefender Total Security 代码问题漏洞

Bitdefender Total Security is an active threat protection software for PCs from the Romanian company Bitdefender. The program has antivirus, firewall, anti-spyware, privacy control and parental control features. It also includes features such as System TuneUp. A code issue vulnerability exists in...

7.8CVSS7.4AI score0.00188EPSS
Exploits0References2
NVD
NVD
added 2022/11/01 8:15 a.m.36 views

CVE-2022-3369

An Improper Access Control vulnerability in the bdservicehost.exe component, as used in Bitdefender Engines for Windows, allows an attacker to delete privileged registry keys by pointing a Registry symlink to a privileged key. This issue affects: Bitdefender Engines versions prior to 7.92659. It...

8.6CVSS0.00181EPSS
Exploits0References1
Rows per page
Query Builder