Notice: compact(): Undefined variable: tcp in /data/rsyncweb/www/wordpress/wp-content/db.php on line 635
Security Advisories Archive - Bitdefender

As a trusted member of the security industry, Bitdefender continually assesses our own products. We also receive and welcome vulnerability advisories via Bug Bounty programs, and support security vendor transparency in reporting.

Notice: Trying to access array offset on value of type bool in /data/rsyncweb/www/wordpress/wp-content/themes/bitdefender-theme/archive-security_advisories.php on line 86

Notice: Trying to get property 'name' of non-object in /data/rsyncweb/www/wordpress/wp-content/themes/bitdefender-theme/archive-security_advisories.php on line 86
CVE ID Published Title Product
CVE-2022-3369 November 1, 2022 Improper handling of registry symbolic links in Bitdefender Engines (VA-10562) Bitdefender Antivirus Free
CVE-2022-2830 September 5, 2022 Deserialization of Untrusted Data in GravityZone Console (VA-10573)
CVE-2022-0677 April 7, 2022 Improper Handling of Length Parameter Inconsistency vulnerability in Bitdefender Update Server (VA-10144) Bitdefender Endpoint Security Tools
CVE-2021-4199 March 7, 2022 Incorrect Permission Assignment for Critical Resource vulnerability in BDReinit.exe (VA-10017) Bitdefender Antivirus Plus
CVE-2021-4198 March 7, 2022 messaging_ipc.dll NULL Pointer Dereference in multiple Bitdefender products (VA-10016) Bitdefender Antivirus Plus
CVE-2020-8107 February 18, 2022 Process Control vulnerability in Bitdefender Antivirus Plus (VA-8709) Bitdefender Antivirus Plus
CVE-2021-3960 December 16, 2021 Privilege Escalation via the GravityZone productManager UpdateServer.KitsManager API (VA-10146) Bitdefender GravityZone Business Security
CVE-2021-3959 December 16, 2021 Server-Side Request Forgery in Bitdefender GravityZone Update Server in Relay Mode (VA-10145) Bitdefender GravityZone Business Security
CVE-2021-3554 November 24, 2021 Improper Access Control vulnerability in patchesUpdate API (VA-9825) Bitdefender Endpoint Security Tools for Linux
CVE-2021-3553 November 24, 2021 Server-Side Request Forgery in EPPUpdateService remote config file (VA-9825) Bitdefender Endpoint Security Tools
1 2 3 6