CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2026/02/03 12:0 a.m.•5 views

CVE-2025-69875

CVE-2025-69875 – Quick Heal Total Security 23.0.0 (quarantine management) : The issue is insufficient validation of restore paths and improper permission handling, allowing a low-privileged local user to restore quarantined files into protected system directories, potentially enabling privilege e...

7.8CVSS5.5AI score0.00018EPSS

Exploits0References2Affected Software1

EUVD•added 2026/02/03 12:0 a.m.•1 views

EUVD-2025-206708

7.8CVSS5.5AI score0.00021EPSS

ATTACKERKB•added 2026/02/03 12:0 a.m.•1 views

CVE-2025-69875

5.5AI score0.00021EPSS

Exploits0References3

RedhatCVE•added 2026/01/09 11:14 a.m.•5 views

CVE-2016-10898

The total-security plugin before 3.4.1 for WordPress has XSS...

6.1CVSS7.1AI score0.0019EPSS

RedhatCVE•added 2026/01/09 8:42 a.m.•6 views

CVE-2022-31467

A DLL hijacking vulnerability in the installed for Quick Heal Total Security prior to 12.1.1.27 allows a local attacker to achieve privilege escalation, leading to execution of arbitrary code, via the installer not restricting the search path for required DLLs and then not verifying the signature...

7.9CVSS6.9AI score0.0007EPSS

RedhatCVE•added 2026/01/09 8:42 a.m.•7 views

CVE-2022-31466

Time of Check - Time of Use TOCTOU vulnerability in Quick Heal Total Security prior to 12.1.1.27 allows a local attacker to achieve privilege escalation, potentially leading to deletion of system files. This is achieved through exploiting the time between detecting a file as malicious and when th...

7.9CVSS6.7AI score0.00036EPSS

NVD•added 2025/12/22 10:16 p.m.•2 views

CVE-2023-53973

Zillya Total Security 3.0.2367.0 contains a privilege escalation vulnerability that allows low-privileged users to copy files to unauthorized system locations using the quarantine module. Attackers can leverage symbolic link techniques to restore quarantined files to restricted directories,...

8.5CVSS0.00038EPSS

OSV•added 2025/12/22 10:16 p.m.•0 views

CVE-2023-53973

7.8CVSS5.8AI score0.00038EPSS

Vulnrichment•added 2025/12/22 9:35 p.m.•2 views

CVE-2023-53973 Zillya Total Security 3.0.2367.0 Local Privilege Escalation via Quarantine Module

8.5CVSS6.7AI score0.00038EPSS

CNNVD•added 2025/12/22 12:0 a.m.•2 views

Zillya Total Security 安全漏洞

Zillya Total Security is a network security protection suite from the Ukrainian company Zillya. A security vulnerability exists in Zillya Total Security version 3.0.2367.0, which stems from an elevation of privilege issue in the quarantine module that could cause a low-privileged user to copy fil...

8.5CVSS6.9AI score0.00038EPSS

Positive Technologies•added 2025/12/22 12:0 a.m.•2 views

PT-2025-52710

Name of the Vulnerable Software and Affected Versions Zillya Total Security version 3.0.2367.0 Description Zillya Total Security allows low-privileged users to copy files to unauthorized system locations through the quarantine module, leading to potential privilege escalation. Attackers can use...

8.5CVSS6.5AI score0.00038EPSS

Exploits1References8

RedhatCVE•added 2025/12/11 9:58 a.m.•4 views

CVE-2025-7073

A local privilege escalation vulnerability in Bitdefender Total Security 27.0.46.231 allows low-privileged attackers to elevate privileges. The issue arises from bdservicehost.exe deleting files from a user-writable directory C:\ProgramData\Atc\Feedback without proper symbolic link validation,...

8.8CVSS7.9AI score0.0001EPSS

NVD•added 2025/12/10 10:16 a.m.•6 views

CVE-2025-7073

A local privilege escalation vulnerability in Bitdefender Total Security versions prior to 27.0.47.241 allows low-privileged attackers to elevate privileges. The issue arises from bdservicehost.exe deleting files from a user-writable directory C:\ProgramData\Atc\Feedback without proper symbolic...

8.8CVSS0.0001EPSS

CVE•added 2025/12/10 9:46 a.m.•10 views

CVE-2025-7073

CVE-2025-7073 affects Bitdefender Total Security 27.0.46.231. The local privilege escalation stems from bdservicehost.exe deleting files in a user-writable directory (C:\ProgramData\Atc\Feedback) without proper symbolic-link validation. The issue is described as being chained with a file copy ope...

8.8CVSS6.4AI score0.0001EPSS

Exploits0References1Affected Software5

ATTACKERKB•added 2025/12/10 9:46 a.m.•0 views

CVE-2025-7073

8.8CVSS6.4AI score0.0001EPSS

EUVD•added 2025/12/10 9:46 a.m.•4 views

EUVD-2025-202416

8.8CVSS7.4AI score0.0001EPSS

Vulnrichment•added 2025/12/10 9:46 a.m.•7 views

CVE-2025-7073 Local Privilege Escalation via Arbitrary File Operation in Bitdefender Total Security

8.8CVSS6.4AI score0.0001EPSS

Cvelist•added 2025/12/10 9:46 a.m.•31 views

CVE-2025-7073 Local Privilege Escalation via Arbitrary File Operation in Bitdefender Total Security

8.8CVSS0.0001EPSS

CNNVD•added 2025/12/10 12:0 a.m.•2 views

Bitdefender Total Security 后置链接漏洞

Bitdefender Total Security is a proactive threat protection software for PCs from the Romanian company Bitdefender. The software features antivirus, firewall, anti-spyware, privacy control, and parental control. It also includes features such as System TuneUp. A backlink vulnerability exists in...

8.8CVSS6.8AI score0.0001EPSS