Endpoint Security Tools Security Vulnerabilities and Issues — Endpoint Security Tools CVE List

Lucene search

BitdefenderEndpoint Security Tools

7 matches found

CVE•added 2022/04/07 7:15 p.m.•79 views

CVE-2022-0677

Improper Handling of Length Parameter Inconsistency vulnerability in the Update Server component of Bitdefender Endpoint Security Tools (in relay role), GravityZone (in Update Server role) allows an attacker to cause a Denial-of-Service. This issue affects: Bitdefender Update Server versions prior ...

7.5CVSS7.4AI score0.00536EPSS

CVE•added 2022/03/07 12:15 p.m.•72 views

CVE-2021-4199

Incorrect Permission Assignment for Critical Resource vulnerability in the crash handling component BDReinit.exe as used in Bitdefender Total Security, Internet Security, Antivirus Plus, Endpoint Security Tools for Windows allows a remote attacker to escalate local privileges to SYSTEM. This issue ...

7.8CVSS7.7AI score0.00576EPSS

CVE•added 2021/10/28 2:15 p.m.•50 views

CVE-2021-3579

Incorrect Default Permissions vulnerability in the bdservicehost.exe and Vulnerability.Scan.exe components as used in Bitdefender Endpoint Security Tools for Windows, Total Security allows a local attacker to elevate privileges to NT AUTHORITY\SYSTEM This issue affects: Bitdefender Endpoint Securit...

7.8CVSS7.4AI score0.00077EPSS

CVE•added 2021/10/28 2:15 p.m.•47 views

CVE-2021-3576

Execution with Unnecessary Privileges vulnerability in Bitdefender Endpoint Security Tools, Total Security allows a local attacker to elevate to 'NT AUTHORITY\System. Impersonation enables the server thread to perform actions on behalf of the client but within the limits of the client's security co...

7.8CVSS7.4AI score0.00088EPSS

CVE•added 2020/01/27 6:15 p.m.•39 views

CVE-2019-17099

An Untrusted Search Path vulnerability in EPSecurityService.exe as used in Bitdefender Endpoint Security Tools versions prior to 6.6.11.163 allows an attacker to load an arbitrary DLL file from the search path. This issue affects: Bitdefender EPSecurityService.exe versions prior to 6.6.11.163.

7.8CVSS6.2AI score0.00241EPSS

CVE•added 2021/11/24 4:15 p.m.•29 views

CVE-2021-3553

A Server-Side Request Forgery (SSRF) vulnerability in the EPPUpdateService of Bitdefender Endpoint Security Tools allows an attacker to use the Endpoint Protection relay as a proxy for any remote host. This issue affects: Bitdefender Endpoint Security Tools versions prior to 6.6.27.390; versions pr...

7.5CVSS6.2AI score0.00222EPSS

CVE•added 2021/11/24 4:15 p.m.•28 views

CVE-2021-3552

A Server-Side Request Forgery (SSRF) vulnerability in the EPPUpdateService component of Bitdefender Endpoint Security Tools allows an attacker to proxy requests to the relay server. This issue affects: Bitdefender Endpoint Security Tools versions prior to 6.6.27.390; versions prior to 7.1.2.33. Bit...

7.5CVSS6.2AI score0.00212EPSS