Vulnerabilities > Bitdefender > Internet Security > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-03-07 CVE-2021-4198 NULL Pointer Dereference vulnerability in Bitdefender products
A NULL Pointer Dereference vulnerability in the messaging_ipc.dll component as used in Bitdefender Total Security, Internet Security, Antivirus Plus, Endpoint Security Tools, VPN Standalone allows an attacker to arbitrarily crash product processes and generate crashdump files.
local
low complexity
bitdefender CWE-476
6.1
2019-07-30 CVE-2019-14242 Uncontrolled Search Path Element vulnerability in Bitdefender products
An issue was discovered in Bitdefender products for Windows (Bitdefender Endpoint Security Tool versions prior to 6.6.8.115; and Bitdefender Antivirus Plus, Bitdefender Internet Security, and Bitdefender Total Security versions prior to 23.0.24.120) that can lead to local code injection.
local
low complexity
bitdefender CWE-427
6.7
2017-03-21 CVE-2017-6186 Code Injection vulnerability in Bitdefender Antivirus Plus, Internet Security and Total Security
Code injection vulnerability in Bitdefender Total Security 12.0 (and earlier), Internet Security 12.0 (and earlier), and Antivirus Plus 12.0 (and earlier) allows a local attacker to bypass a self-protection mechanism, inject arbitrary code, and take full control of any Bitdefender process via a "DoubleAgent" attack.
local
low complexity
bitdefender CWE-94
6.7