Vulnerability Details CVE-2020-15297
Insufficient validation in the Bitdefender Update Server and BEST Relay components of Bitdefender Endpoint Security Tools versions prior to 6.6.20.294 allows an unprivileged attacker to bypass the in-place mitigations and interact with hosts on the network. This issue affects: Bitdefender Update Server versions prior to 6.6.20.294.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 40.0%
CVSS Severity
CVSS v3 Score 7.1
CVSS v2 Score 6.4
References
Products affected by CVE-2020-15297
-
cpe:2.3:a:bitdefender:update_server:-
-
cpe:2.3:a:bitdefender:update_server:3.4.0.276