CVE-2020-8099

A vulnerability in the improper handling of junctions in Bitdefender Antivirus Free can allow an unprivileged user to substitute a quarantined file, and restore it to a privileged location. This issue affects: Bitdefender Antivirus Free versions prior to 1.0.17.
Configurations

Configuration 1 (hide)

cpe:2.3:a:bitdefender:antivirus_2020:*:*:*:*:free:*:*:*

History

21 Nov 2024, 05:38

Type Values Removed Values Added
CVSS v2 : 4.6
v3 : 6.2
v2 : 4.6
v3 : 7.1
References () https://www.bitdefender.com/support/security-advisories/link-resolution-privilege-escalation-vulnerability-in-bitdefender-antivirus-free-va-8387/ - Vendor Advisory () https://www.bitdefender.com/support/security-advisories/link-resolution-privilege-escalation-vulnerability-in-bitdefender-antivirus-free-va-8387/ - Vendor Advisory

Information

Published : 2020-04-21 13:15

Updated : 2024-11-21 05:38


NVD link : CVE-2020-8099

Mitre link : CVE-2020-8099

CVE.ORG link : CVE-2020-8099


JSON object : View

Products Affected

bitdefender

  • antivirus_2020
CWE
CWE-59

Improper Link Resolution Before File Access ('Link Following')