Vulnerabilities > Bitdefender
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-10-24 | CVE-2018-8955 | Improper Verification of Cryptographic Signature vulnerability in Bitdefender Gravityzone The installer for BitDefender GravityZone relies on an encoded string in a filename to determine the URL for installation metadata, which allows remote attackers to execute arbitrary code by changing the filename while leaving the file's digital signature unchanged. | 9.8 |
| 2018-03-12 | CVE-2018-6183 | Unspecified vulnerability in Bitdefender Total Security 2018 BitDefender Total Security 2018 allows local users to gain privileges or cause a denial of service by impersonating all the pipes through a use of an "insecurely created named pipe". | 7.8 |
| 2017-12-21 | CVE-2017-17410 | Out-of-bounds Write vulnerability in Bitdefender Internet Security 2018 7.72918/73447 This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Bitdefender Internet Security 2018. | 8.8 |
| 2017-12-21 | CVE-2017-17409 | Integer Overflow or Wraparound vulnerability in Bitdefender Internet Security 2018 7.72918/73447 This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Bitdefender Internet Security 2018. | 8.8 |
| 2017-12-21 | CVE-2017-17408 | Integer Overflow or Wraparound vulnerability in Bitdefender Internet Security 2018 7.72918/73447 This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Bitdefender Internet Security 2018. | 8.8 |
| 2017-10-31 | CVE-2017-10954 | Integer Overflow or Wraparound vulnerability in Bitdefender Internet Security 2018 This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Bitdefender Internet Security Internet Security 2018 prior to build 7.72918. | 8.8 |
| 2017-08-29 | CVE-2017-10950 | Double Free vulnerability in Bitdefender Total Security 21.0.24.62 This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of Bitdefender Total Security 21.0.24.62. | 7.0 |
| 2017-03-21 | CVE-2017-6186 | Code Injection vulnerability in Bitdefender Antivirus Plus, Internet Security and Total Security Code injection vulnerability in Bitdefender Total Security 12.0 (and earlier), Internet Security 12.0 (and earlier), and Antivirus Plus 12.0 (and earlier) allows a local attacker to bypass a self-protection mechanism, inject arbitrary code, and take full control of any Bitdefender process via a "DoubleAgent" attack. | 6.7 |