CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-15731

An improper Input Validation vulnerability in the code handling file renaming and recovery in Bitdefender Engines allows an attacker to write an arbitrary file in a location hardcoded in a specially-crafted malicious file name. This issue affects: Bitdefender Engines versions prior to 7.85448.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 40.5%

CVSS Severity

CVSS v3 Score 3.2

CVSS v2 Score 4.3

References

https://www.bitdefender.com/support/security-advisories/local-privilege-escalation-in-bitdefender-engines-va-8953
https://www.bitdefender.com/support/security-advisories/local-privilege-escalation-in-bitdefender-engines-va-8953

Products affected by CVE-2020-15731

Bitdefender » Engines » Version: N/A

cpe:2.3:a:bitdefender:engines:-
Bitdefender » Engines » Version: 7.84063

cpe:2.3:a:bitdefender:engines:7.84063
Bitdefender » Engines » Version: 7.84892

cpe:2.3:a:bitdefender:engines:7.84892
Bitdefender » Engines » Version: 7.84897

cpe:2.3:a:bitdefender:engines:7.84897

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-15731

Products

Pricing

Contact Us