Vulnerabilities (CVE)

Filtered by vendor Bitdefender Subscribe
Filtered by product Engines
Total 6 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-3369 1 Bitdefender 1 Engines 2024-09-17 N/A 5.5 MEDIUM
An Improper Access Control vulnerability in the bdservicehost.exe component, as used in Bitdefender Engines for Windows, allows an attacker to delete privileged registry keys by pointing a Registry symlink to a privileged key. This issue affects: Bitdefender Engines versions prior to 7.92659. It also affects Bitdefender Antivirus Free, Bitdefender Antivirus Plus, Bitdefender Internet Security, Bitdefender Total Security, as well as Bitdefender Endpoint Security Tools for Windows with engine versions prior to 7.92659.
CVE-2023-3633 1 Bitdefender 1 Engines 2024-02-05 N/A 7.5 HIGH
An out-of-bounds write vulnerability in Bitdefender Engines on Windows causes the engine to crash. This issue affects Bitdefender Engines version 7.94791 and lower.
CVE-2020-15731 1 Bitdefender 1 Engines 2024-02-04 4.3 MEDIUM 3.6 LOW
An improper Input Validation vulnerability in the code handling file renaming and recovery in Bitdefender Engines allows an attacker to write an arbitrary file in a location hardcoded in a specially-crafted malicious file name. This issue affects: Bitdefender Engines versions prior to 7.85448.
CVE-2020-8109 1 Bitdefender 1 Engines 2024-02-04 5.0 MEDIUM 7.5 HIGH
A vulnerability has been discovered in the ace.xmd parser that results from a lack of proper validation of user-supplied data, which can result in a write past the end of an allocated buffer. This can result in denial-of-service. This issue affects: Bitdefender Engines version 7.84892 and prior versions.
CVE-2020-8110 1 Bitdefender 1 Engines 2024-02-04 5.0 MEDIUM 7.5 HIGH
A vulnerability has been discovered in the ceva_emu.cvd module that results from a lack of proper validation of user-supplied data, which can result in a pointer that is fetched from uninitialized memory. This can lead to denial-of-service. This issue affects: Bitdefender Engines version 7.84897 and prior versions.
CVE-2020-8100 1 Bitdefender 1 Engines 2024-02-04 5.0 MEDIUM 7.5 HIGH
Improper Input Validation vulnerability in the cevakrnl.rv0 module as used in the Bitdefender Engines allows an attacker to trigger a denial of service while scanning a specially-crafted sample. This issue affects: Bitdefender Bitdefender Engines versions prior to 7.84063.