Bitdefender Gravityzone
8 CVEs affecting Bitdefender Gravityzone. Latest disclosed: 2022-04-07. Critical: 1, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-3554 | Critical | 9.0 | 2021-11-24 | Improper Access Control vulnerability in the patchesUpdate API as implemented in Bitdefender Endpoint Security Tools for Linux as a relay role allows an attack… |
CVE-2022-0677 | High | 7.5 | 2022-04-07 | Improper Handling of Length Parameter Inconsistency vulnerability in the Update Server component of Bitdefender Endpoint Security Tools (in relay role), Gravit… |
CVE-2021-3960 | High | 7.1 | 2021-12-16 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in the UpdateServer component of Bitdefender GravityZone allows an… |
CVE-2021-3959 | Medium | 6.8 | 2021-12-16 | A Server-Side Request Forgery (SSRF) vulnerability in the EPPUpdateService component of Bitdefender Endpoint Security Tools allows an attacker to proxy request… |
CVE-2021-3641 | Medium | 6.1 | 2021-11-09 | Improper Link Resolution Before File Access ('Link Following') vulnerability in the EPAG component of Bitdefender Endpoint Security Tools for Windows allows a… |
CVE-2021-3553 | Medium | 5.3 | 2021-11-24 | A Server-Side Request Forgery (SSRF) vulnerability in the EPPUpdateService of Bitdefender Endpoint Security Tools allows an attacker to use the Endpoint Protec… |
CVE-2021-3552 | Medium | 5.3 | 2021-11-24 | A Server-Side Request Forgery (SSRF) vulnerability in the EPPUpdateService component of Bitdefender Endpoint Security Tools allows an attacker to proxy request… |
CVE-2014-5350 | | 2014-08-19 | Multiple directory traversal vulnerabilities in Bitdefender GravityZone before 5.1.11.432 allow remote attackers to read arbitrary files via a (1) .. (dot dot)… |