Gravityzone Security Vulnerabilities and Issues — Gravityzone CVE List

Lucene search

BitdefenderGravityzone

4 matches found

CVE•added 2021/11/09 2:15 p.m.•36 views

CVE-2021-3641

Improper Link Resolution Before File Access ('Link Following') vulnerability in the EPAG component of Bitdefender Endpoint Security Tools for Windows allows a local attacker to cause a denial of service. This issue affects: Bitdefender GravityZone version 7.1.2.33 and prior versions.

6.1CVSS6.1AI score0.00041EPSS

CVE•added 2021/11/24 4:15 p.m.•32 views

CVE-2021-3554

Improper Access Control vulnerability in the patchesUpdate API as implemented in Bitdefender Endpoint Security Tools for Linux as a relay role allows an attacker to manipulate the remote address used for pulling patches. This issue affects: Bitdefender Endpoint Security Tools for Linux versions pri...

10CVSS9.2AI score0.00318EPSS

CVE•added 2021/11/24 4:15 p.m.•29 views

CVE-2021-3553

A Server-Side Request Forgery (SSRF) vulnerability in the EPPUpdateService of Bitdefender Endpoint Security Tools allows an attacker to use the Endpoint Protection relay as a proxy for any remote host. This issue affects: Bitdefender Endpoint Security Tools versions prior to 6.6.27.390; versions pr...

7.5CVSS6.2AI score0.00222EPSS

CVE•added 2021/11/24 4:15 p.m.•28 views

CVE-2021-3552

A Server-Side Request Forgery (SSRF) vulnerability in the EPPUpdateService component of Bitdefender Endpoint Security Tools allows an attacker to proxy requests to the relay server. This issue affects: Bitdefender Endpoint Security Tools versions prior to 6.6.27.390; versions prior to 7.1.2.33. Bit...

7.5CVSS6.2AI score0.00212EPSS