Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2021-34057

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00557EPSS
Exploits0References2
NVD
NVD
added 2022/11/01 8:15 a.m.36 views

CVE-2022-3369

An Improper Access Control vulnerability in the bdservicehost.exe component, as used in Bitdefender Engines for Windows, allows an attacker to delete privileged registry keys by pointing a Registry symlink to a privileged key. This issue affects: Bitdefender Engines versions prior to 7.92659. It...

8.6CVSS0.00181EPSS
Exploits0References1
Prion
Prion
added 2022/04/07 7:15 p.m.17 views

Input validation

Improper Handling of Length Parameter Inconsistency vulnerability in the Update Server component of Bitdefender Endpoint Security Tools in relay role, GravityZone in Update Server role allows an attacker to cause a Denial-of-Service. This issue affects: Bitdefender Update Server versions prior to...

5CVSS7.3AI score0.01229EPSS
Exploits0References1Affected Software3
Cvelist
Cvelist
added 2022/03/07 11:35 a.m.38 views

CVE-2021-4199 Incorrect Permission Assignment for Critical Resource vulnerability in BDReinit.exe (VA-10017)

Incorrect Permission Assignment for Critical Resource vulnerability in the crash handling component BDReinit.exe as used in Bitdefender Total Security, Internet Security, Antivirus Plus, Endpoint Security Tools for Windows allows a remote attacker to escalate local privileges to SYSTEM. This issu...

7.8CVSS7.8AI score0.00758EPSS
Exploits0References2
Prion
Prion
added 2021/12/16 3:15 p.m.18 views

Server side request forgery (ssrf)

A Server-Side Request Forgery SSRF vulnerability in the EPPUpdateService component of Bitdefender Endpoint Security Tools allows an attacker to proxy requests to the relay server. This issue affects: Bitdefender Bitdefender GravityZone versions prior to 3.3.8.272...

5CVSS7.5AI score0.01688EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/11/24 4:15 p.m.19 views

Server side request forgery (ssrf)

A Server-Side Request Forgery SSRF vulnerability in the EPPUpdateService component of Bitdefender Endpoint Security Tools allows an attacker to proxy requests to the relay server. This issue affects: Bitdefender Endpoint Security Tools versions prior to 6.6.27.390; versions prior to 7.1.2.33...

5CVSS7.5AI score0.01367EPSS
Exploits0References1Affected Software2
Prion
Prion
added 2021/11/24 4:15 p.m.19 views

Improper access control

Improper Access Control vulnerability in the patchesUpdate API as implemented in Bitdefender Endpoint Security Tools for Linux as a relay role allows an attacker to manipulate the remote address used for pulling patches. This issue affects: Bitdefender Endpoint Security Tools for Linux versions...

7.5CVSS9.2AI score0.02682EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2021/10/28 1:50 p.m.35 views

CVE-2021-3576 Privilege escalation via SeImpersonatePrivilege

Execution with Unnecessary Privileges vulnerability in Bitdefender Endpoint Security Tools, Total Security allows a local attacker to elevate to 'NT AUTHORITY\System. Impersonation enables the server thread to perform actions on behalf of the client but within the limits of the client's security...

7.8CVSS7.7AI score0.00942EPSS
Exploits0References3
CVE
CVE
added 2021/05/24 1:30 p.m.65 views

CVE-2021-3485

CVE-2021-3485 affects Bitdefender Endpoint Security Tools for Linux prior to 6.2.21.155. An Improper Input Validation in the Product Update feature allows a man-in-the-middle attacker to abuse the DownloadFile function of the Product Update to achieve remote code execution. Remediation: update to...

6.6CVSS6.9AI score0.0088EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2021/05/18 11:15 a.m.31 views

CVE-2020-15279

An Improper Access Control vulnerability in the logging component of Bitdefender Endpoint Security Tools for Windows versions prior to 6.6.23.320 allows a regular user to learn the scanning exclusion paths. This issue was discovered during external security research...

4CVSS0.00474EPSS
Exploits0References1
CVE
CVE
added 2020/01/27 5:23 p.m.55 views

CVE-2019-17099

CVE-2019-17099 affects Bitdefender Endpoint Security Tools, specifically EPSecurityService.exe, in versions prior to 6.6.11.163. The issue is an Untrusted Search Path vulnerability that allows loading an arbitrary DLL from the search path. Evidence across sources confirms the vulnerable component...

7.8CVSS6.2AI score0.00652EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/01/27 5:23 p.m.13 views

CVE-2019-17099 Untrusted Search Path vulnerability in EPSecurityService.exe (VA-3500)

An Untrusted Search Path vulnerability in EPSecurityService.exe as used in Bitdefender Endpoint Security Tools versions prior to 6.6.11.163 allows an attacker to load an arbitrary DLL file from the search path. This issue affects: Bitdefender EPSecurityService.exe versions prior to 6.6.11.163...

5.3CVSS7.6AI score0.00652EPSS
Exploits0References1
Rows per page
Query Builder