Vulnerabilities > Bitdefender > Endpoint Security > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-04-09 | CVE-2024-2224 | Unspecified vulnerability in Bitdefender Endpoint Security and Gravityzone Control Center Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’) vulnerability in the UpdateServer component of Bitdefender GravityZone allows an attacker to execute arbitrary code on vulnerable instances. | 9.8 |
| 2024-04-09 | CVE-2024-2223 | Incorrect Comparison vulnerability in Bitdefender Endpoint Security and Gravityzone Control Center An Incorrect Regular Expression vulnerability in Bitdefender GravityZone Update Server allows an attacker to cause a Server Side Request Forgery and reconfigure the relay. | 9.8 |