cbcvebase.

Bitdefender Endpoint Security Tools For Windows vulnerabilities

3 known vulnerabilities affecting bitdefender/endpoint_security_tools_for_windows.

Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH3

Vulnerabilities

Page 1 of 1
CVE-2021-4199P3HIGHCVSS 7.8≥ unspecified, < 7.4.3.1402022-03-07
CVE-2021-4199 [HIGH] CWE-732 CVE-2021-4199: Incorrect Permission Assignment for Critical Resource vulnerability in the crash handling component Incorrect Permission Assignment for Critical Resource vulnerability in the crash handling component BDReinit.exe as used in Bitdefender Total Security, Internet Security, Antivirus Plus, Endpoint Security Tools for Windows allows a remote attacker to escalate local privileges to SYSTEM. This issue affects: Bitdefender Total Security versions prior to 26.
nvd
CVE-2022-0677P3HIGHCVSS 7.5≥ unspecified, < 7.4.1.1112022-04-07
CVE-2022-0677 [HIGH] CWE-130 CVE-2022-0677: Improper Handling of Length Parameter Inconsistency vulnerability in the Update Server component of Improper Handling of Length Parameter Inconsistency vulnerability in the Update Server component of Bitdefender Endpoint Security Tools (in relay role), GravityZone (in Update Server role) allows an attacker to cause a Denial-of-Service. This issue affects: Bitdefender Update Server versions prior to 3.4.0.276. Bitdefender GravityZone versions prior to 2
nvd
CVE-2021-3579P3HIGHCVSS 7.8≥ unspecified, < 7.2.1.652021-10-28
CVE-2021-3579 [HIGH] CWE-276 CVE-2021-3579: Incorrect Default Permissions vulnerability in the bdservicehost.exe and Vulnerability.Scan.exe comp Incorrect Default Permissions vulnerability in the bdservicehost.exe and Vulnerability.Scan.exe components as used in Bitdefender Endpoint Security Tools for Windows, Total Security allows a local attacker to elevate privileges to NT AUTHORITY\SYSTEM This issue affects: Bitdefender Endpoint Security Tools for Windows versions prior to 7.2.1.65. Bitdefen
nvd
Bitdefender Endpoint Security Tools For Windows vulnerabilities | cvebase