Gravityzone@* Security Vulnerabilities and Issues — Gravityzone@* CVE List

Lucene search

BitdefenderGravityzone*

5 matches found

CVE•added 2021/12/16 3:15 p.m.•38 views

CVE-2021-3960

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in the UpdateServer component of Bitdefender GravityZone allows an attacker to execute arbitrary code on vulnerable instances. This issue affects Bitdefender GravityZone versions prior to 3.3.8.272

7.8CVSS7.5AI score0.00047EPSS

CVE•added 2021/11/09 2:15 p.m.•36 views

CVE-2021-3641

Improper Link Resolution Before File Access ('Link Following') vulnerability in the EPAG component of Bitdefender Endpoint Security Tools for Windows allows a local attacker to cause a denial of service. This issue affects: Bitdefender GravityZone version 7.1.2.33 and prior versions.

6.1CVSS6.1AI score0.00041EPSS

CVE•added 2021/10/28 2:15 p.m.•33 views

CVE-2021-3823

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in the UpdateServer component of Bitdefender GravityZone allows an attacker to execute arbitrary code on vulnerable instances. This issue affects: Bitdefender GravityZone versions prior to 3.3.8.249.

9.8CVSS8.6AI score0.00403EPSS

CVE•added 2021/11/24 4:15 p.m.•32 views

CVE-2021-3554

Improper Access Control vulnerability in the patchesUpdate API as implemented in Bitdefender Endpoint Security Tools for Linux as a relay role allows an attacker to manipulate the remote address used for pulling patches. This issue affects: Bitdefender Endpoint Security Tools for Linux versions pri...

10CVSS9.2AI score0.00318EPSS

CVE•added 2021/12/16 3:15 p.m.•30 views

CVE-2021-3959

A Server-Side Request Forgery (SSRF) vulnerability in the EPPUpdateService component of Bitdefender Endpoint Security Tools allows an attacker to proxy requests to the relay server. This issue affects: Bitdefender Bitdefender GravityZone versions prior to 3.3.8.272

7.5CVSS7AI score0.00222EPSS