Vulnerability Details CVE-2025-2244
A vulnerability in the sendMailFromRemoteSource method in Emails.php as used in Bitdefender GravityZone Console unsafely uses php unserialize() on user-supplied input without validation. By crafting a malicious serialized payload, an attacker can trigger PHP object injection, perform a file write, and gain arbitrary command execution on the host system.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 59.5%
CVSS Severity
CVSS v3 Score 9.8
Products affected by CVE-2025-2244
-
cpe:2.3:a:bitdefender:gravityzone:-
-
cpe:2.3:a:bitdefender:gravityzone:3.3.8.249
-
cpe:2.3:a:bitdefender:gravityzone:5.1.11.432
-
cpe:2.3:a:bitdefender:gravityzone:5.1.21.465
-
cpe:2.3:a:bitdefender:gravityzone:5.1.23-470
-
cpe:2.3:a:bitdefender:gravityzone:5.1.23-471
-
cpe:2.3:a:bitdefender:gravityzone:5.1.23-472
-
cpe:2.3:a:bitdefender:gravityzone:5.1.23-473
-
cpe:2.3:a:bitdefender:gravityzone:5.1.23-474
-
cpe:2.3:a:bitdefender:gravityzone:5.1.23-476
-
cpe:2.3:a:bitdefender:gravityzone:5.1.23-477
-
cpe:2.3:a:bitdefender:gravityzone:5.1.25-483
-
cpe:2.3:a:bitdefender:gravityzone:5.1.25-487
-
cpe:2.3:a:bitdefender:gravityzone:5.1.25-525
-
cpe:2.3:a:bitdefender:gravityzone:5.1.25-526
-
cpe:2.3:a:bitdefender:gravityzone:5.1.5.386
-
cpe:2.3:a:bitdefender:gravityzone:6.1.27-537
-
cpe:2.3:a:bitdefender:gravityzone:6.1.29-540
-
cpe:2.3:a:bitdefender:gravityzone:6.1.29-545
-
cpe:2.3:a:bitdefender:gravityzone:6.1.29-546
-
cpe:2.3:a:bitdefender:gravityzone:6.1.29-547
-
cpe:2.3:a:bitdefender:gravityzone:6.1.41-549
-
cpe:2.3:a:bitdefender:gravityzone:6.2.1-30
-
cpe:2.3:a:bitdefender:gravityzone:6.2.1-34
-
cpe:2.3:a:bitdefender:gravityzone:6.2.1-35
-
cpe:2.3:a:bitdefender:gravityzone:6.24.1-1
-
cpe:2.3:a:bitdefender:gravityzone:6.3.1-4
-
cpe:2.3:a:bitdefender:gravityzone:6.3.3-2
-
cpe:2.3:a:bitdefender:gravityzone:6.3.3-3
-
cpe:2.3:a:bitdefender:gravityzone:6.3.3-4
-
cpe:2.3:a:bitdefender:gravityzone:6.3.3-8
-
cpe:2.3:a:bitdefender:gravityzone:6.3.3-9
-
cpe:2.3:a:bitdefender:gravityzone:6.3.5-2
-
cpe:2.3:a:bitdefender:gravityzone:6.3.5-3
-
cpe:2.3:a:bitdefender:gravityzone:6.3.5-4
-
cpe:2.3:a:bitdefender:gravityzone:6.3.7-1
-
cpe:2.3:a:bitdefender:gravityzone:6.3.7-7
-
cpe:2.3:a:bitdefender:gravityzone:6.3.9-3
-
cpe:2.3:a:bitdefender:gravityzone:6.5.3-70