Vulnerabilities > Bitdefender > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-21 | CVE-2020-8099 | Link Following vulnerability in Bitdefender Antivirus 2020 1.0.15.138 A vulnerability in the improper handling of junctions in Bitdefender Antivirus Free can allow an unprivileged user to substitute a quarantined file, and restore it to a privileged location. | 6.2 |
| 2020-04-07 | CVE-2020-8096 | Untrusted Search Path vulnerability in Bitdefender Antimalware Software Development KIT Untrusted Search Path vulnerability in Bitdefender High-Level Antimalware SDK for Windows allows an attacker to load third party code from a DLL library in the search path. | 5.3 |
| 2020-01-30 | CVE-2020-8095 | Improper Input Validation vulnerability in Bitdefender Total Security 2020 24.0.12.69/24.0.20.116 A vulnerability in the improper handling of junctions before deletion in Bitdefender Total Security 2020 can allow an attacker to to trigger a denial of service on the affected device. | 5.5 |
| 2020-01-30 | CVE-2020-8092 | Improper Privilege Management vulnerability in Bitdefender Antivirus A privilege escalation vulnerability in BDLDaemon as used in Bitdefender Antivirus for Mac allows a local attacker to obtain authentication tokens for requests submitted to the Bitdefender Cloud. | 5.5 |
| 2020-01-27 | CVE-2019-17103 | Incorrect Default Permissions vulnerability in Bitdefender Antivirus An Incorrect Default Permissions vulnerability in the BDLDaemon component of Bitdefender AV for Mac allows an attacker to elevate permissions to read protected directories. | 5.5 |
| 2020-01-27 | CVE-2019-17100 | Untrusted Search Path vulnerability in Bitdefender Total Security 2020 An Untrusted Search Path vulnerability in bdserviceshost.exe as used in Bitdefender Total Security 2020 allows an attacker to execute arbitrary code. | 6.5 |
| 2019-10-17 | CVE-2019-12611 | Allocation of Resources Without Limits or Throttling vulnerability in Bitdefender BOX Firmware An issue was discovered in Bitdefender BOX firmware versions before 2.1.37.37-34 that affects the general reliability of the product. | 4.4 |
| 2019-07-30 | CVE-2019-14242 | Uncontrolled Search Path Element vulnerability in Bitdefender products An issue was discovered in Bitdefender products for Windows (Bitdefender Endpoint Security Tool versions prior to 6.6.8.115; and Bitdefender Antivirus Plus, Bitdefender Internet Security, and Bitdefender Total Security versions prior to 23.0.24.120) that can lead to local code injection. | 6.7 |
| 2019-05-24 | CVE-2018-18060 | Out-of-bounds Read vulnerability in Bitdefender Scan Engines 7.76662/7.76675 An issue was discovered in Bitdefender Engines before 7.76808. | 5.3 |
| 2019-05-24 | CVE-2018-18059 | Out-of-bounds Read vulnerability in Bitdefender Scan Engines 7.76662 An issue was discovered in Bitdefender Engines before 7.76675. | 5.3 |