Bitdefender Total Security

15 CVEs affecting Bitdefender Total Security. Latest disclosed: 2025-12-10. Critical: 0, High: 6.

Top CVEs affecting Bitdefender Total Security
CVE	Severity	Score	Published	Summary
`CVE-2020-8107`	High	`8.2`	2022-02-18	A Process Control vulnerability in ProductAgentUI.exe as used in Bitdefender Antivirus Plus allows an attacker to tamper with product settings via a specially…
`CVE-2025-7073`	High	`7.8`	2025-12-10	A local privilege escalation vulnerability in Bitdefender Total Security versions prior to 27.0.47.241 allows low-privileged attackers to elevate privileges. T…
`CVE-2023-6154`	High	`7.8`	2024-04-01	A configuration setting issue in seccenter.exe as used in Bitdefender Total Security, Bitdefender Internet Security, Bitdefender Antivirus Plus, Bitdefender An…
`CVE-2021-4199`	High	`7.8`	2022-03-07	Incorrect Permission Assignment for Critical Resource vulnerability in the crash handling component BDReinit.exe as used in Bitdefender Total Security, Interne…
`CVE-2021-3576`	High	`7.8`	2021-10-28	Execution with Unnecessary Privileges vulnerability in Bitdefender Endpoint Security Tools, Total Security allows a local attacker to elevate to 'NT AUTHORITY\…
`CVE-2021-3579`	High	`7.8`	2021-10-28	Incorrect Default Permissions vulnerability in the bdservicehost.exe and Vulnerability.Scan.exe components as used in Bitdefender Endpoint Security Tools for W…
`CVE-2022-0357`	Medium	`6.7`	2023-05-24	Unquoted Search Path or Element vulnerability in the Vulnerability Scan component of Bitdefender Total Security, Bitdefender Internet Security, and Bitdefender…
`CVE-2020-15732`	Medium	`6.5`	2021-06-22	Improper Certificate Validation vulnerability in the Online Threat Prevention module as used in Bitdefender Total Security allows an attacker to potentially by…
`CVE-2021-4198`	Medium	`6.1`	2022-03-07	A NULL Pointer Dereference vulnerability in the messaging_ipc.dll component as used in Bitdefender Total Security, Internet Security, Antivirus Plus, Endpoint…
`CVE-2023-49570`			2024-10-18	A vulnerability has been identified in Bitdefender Total Security HTTPS scanning functionality where the software trusts a certificate issued by an entity that…
`CVE-2023-49567`			2024-10-18	A vulnerability has been identified in the Bitdefender Total Security HTTPS scanning functionality where the product incorrectly checks the site's certificate…
`CVE-2023-6058`			2024-10-18	A vulnerability has been identified in Bitdefender Safepay's handling of HTTPS connections. The issue arises when the product blocks a connection due to an unt…
`CVE-2023-6057`			2024-10-18	A vulnerability has been discovered in Bitdefender Total Security HTTPS scanning functionality that results in the improper trust of certificates issued using…
`CVE-2023-6056`			2024-10-18	A vulnerability has been discovered in Bitdefender Total Security HTTPS scanning functionality that results in the improper trust of self-signed certificates…
`CVE-2023-6055`			2024-10-18	A vulnerability has been identified in Bitdefender Total Security HTTPS scanning functionality where the software fails to properly validate website certificat…