Bitdefender Antivirus vulnerabilities
7 known vulnerabilities affecting bitdefender/antivirus.
Total CVEs
7
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH3MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2008-5409P3CRITICALCVSS 9.3PoCv102008-12-10
CVE-2008-5409 [CRITICAL] CWE-119 CVE-2008-5409: Unspecified vulnerability in the pdf.xmd module in (1) BitDefender Free Edition 10 and Antivirus Sta
Unspecified vulnerability in the pdf.xmd module in (1) BitDefender Free Edition 10 and Antivirus Standard 10, (2) BullGuard Internet Security 8.5, and (3) Software602 Groupware Server 6.0.08.1118 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF file, possibly related to inc
nvd
CVE-2025-7073P3HIGHCVSS 7.8fixed in 30.0.25.772025-12-10
CVE-2025-7073 [HIGH] CWE-59 CVE-2025-7073: A local privilege escalation vulnerability in Bitdefender Total Security versions prior to 27.0.47.2
A local privilege escalation vulnerability in Bitdefender Total Security versions prior to 27.0.47.241 allows low-privileged attackers to elevate privileges. The issue arises from bdservicehost.exe deleting files from a user-writable directory (C:\ProgramData\Atc\Feedback) without proper symbolic link validation, enabling arbitrary file deletion. This is
nvd
CVE-2023-6154P3HIGHCVSS 7.8v27.0.25.1142024-04-01
CVE-2023-6154 [HIGH] CWE-15 CVE-2023-6154: A configuration setting issue in seccenter.exe as used in Bitdefender Total Security, Bitdefender In
A configuration setting issue in seccenter.exe as used in Bitdefender Total Security, Bitdefender Internet Security, Bitdefender Antivirus Plus, Bitdefender Antivirus Free allows an attacker to change the product's expected behavior and potentially load a third-party library upon execution. This issue affects Total Security: 27.0.25.114; Internet Securit
nvd
CVE-2020-8093P3HIGHCVSS 7.8fixed in 8.0.02020-01-30
CVE-2020-8093 [HIGH] CWE-264 CVE-2020-8093: A vulnerability in the AntivirusforMac binary as used in Bitdefender Antivirus for Mac allows an att
A vulnerability in the AntivirusforMac binary as used in Bitdefender Antivirus for Mac allows an attacker to inject a library using DYLD environment variable to cause third-party code execution
nvd
CVE-2020-8092P4MEDIUMCVSS 5.5fixed in 8.0.02020-01-30
CVE-2020-8092 [MEDIUM] CWE-264 CVE-2020-8092: A privilege escalation vulnerability in BDLDaemon as used in Bitdefender Antivirus for Mac allows a
A privilege escalation vulnerability in BDLDaemon as used in Bitdefender Antivirus for Mac allows a local attacker to obtain authentication tokens for requests submitted to the Bitdefender Cloud. This issue affects: Bitdefender Bitdefender Antivirus for Mac versions prior to 8.0.0.
nvd
CVE-2019-17103P4MEDIUMCVSS 5.5fixed in 8.0.02020-01-27
CVE-2019-17103 [MEDIUM] CWE-276 CVE-2019-17103: An Incorrect Default Permissions vulnerability in the BDLDaemon component of Bitdefender AV for Mac
An Incorrect Default Permissions vulnerability in the BDLDaemon component of Bitdefender AV for Mac allows an attacker to elevate permissions to read protected directories. This issue affects: Bitdefender AV for Mac versions prior to 8.0.0.
nvd
CVE-2008-1735P4MEDIUMCVSS 4.9v20082008-04-30
CVE-2008-1735 [MEDIUM] CVE-2008-1735: BitDefender Antivirus 2008 20080118 and earlier allows local users to cause a denial of service (sys
BitDefender Antivirus 2008 20080118 and earlier allows local users to cause a denial of service (system crash) via an invalid pointer to the CLIENT_ID structure in a call to the NtOpenProcess hooked System Service Descriptor Table (SSDT) function.
nvd