CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-4177

A host whitelist parser issue in the proxy service implemented in the GravityZone Update Server allows an attacker to cause a server-side request forgery. This issue only affects GravityZone Console versions before 6.38.1-2 that are running only on premise.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 36.6%

CVSS Severity

CVSS v3 Score 8.1

References

https://bitdefender.com/consumer/support/support/security-advisories/host-whitelist-parser-issue-in-gravityzone-console-on-premise-va-11554/
https://www.cve.org/CVERecord?id=CVE-2024-4177
https://bitdefender.com/consumer/support/support/security-advisories/host-whitelist-parser-issue-in-gravityzone-console-on-premise-va-11554/

Products affected by CVE-2024-4177

Bitdefender » Gravityzone » Version: Any

cpe:2.3:a:bitdefender:gravityzone:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-4177

Products

Pricing

Contact Us