Gravityzone Update Server@* Security Vulnerabilities and Issues — Gravityzone Update Server@* CVE List

Lucene search

BitdefenderGravityzone Update Server*

1 matches found

CVE•added 2025/04/04 10:15 a.m.•53 views

CVE-2025-2245

A server-side request forgery (SSRF) vulnerability exists in the Bitdefender GravityZone Update Server when operating in Relay Mode. The HTTP proxy component on port 7074 uses a domain allowlist to restrict outbound requests, but fails to properly sanitize hostnames containing null-byte (%00) seque...

6.9CVSS6.7AI score0.00034EPSS