Vulnerabilities > CVE-2020-15279 - Unspecified vulnerability in Bitdefender Endpoint Security Tools 6.6.18.261

CVSS 3.3 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

local

low complexity

bitdefender

NVD

Published: 2021-05-18

Updated: 2022-10-21

Summary

An Improper Access Control vulnerability in the logging component of Bitdefender Endpoint Security Tools for Windows versions prior to 6.6.23.320 allows a regular user to learn the scanning exclusion paths. This issue was discovered during external security research.

Vulnerable Configurations

Part	Description	Count
Application	Bitdefender Bitdefender Endpoint Security Tools - Bitdefender Endpoint Security Tools 6.6.18.261	2

References

https://www.bitdefender.com/support/security-advisories/scanning-exclusion-paths-disclosure-in-best-for-windows-va-9380