CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-7073

A local privilege escalation vulnerability in Bitdefender Total Security 27.0.46.231 allows low-privileged attackers to elevate privileges. The issue arises from bdservicehost.exe deleting files from a user-writable directory (C:\ProgramData\Atc\Feedback) without proper symbolic link validation, enabling arbitrary file deletion. This issue is chained with a file copy operation during network events and a filter driver bypass via DLL injection to achieve arbitrary file copy and code execution as elevated user.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 15.7%

CVSS Severity

CVSS v3 Score 7.8

References

https://www.bitdefender.com/support/security-advisories/local-privilege-escalation-via-arbitrary-file-operation-in-bitdefender-atc-va-12590

Products affected by CVE-2025-7073

Bitdefender » Antivirus » Version: 27.0.25.114

cpe:2.3:a:bitdefender:antivirus:27.0.25.114
Bitdefender » Antivirus Plus » Version: N/A

cpe:2.3:a:bitdefender:antivirus_plus:-
Bitdefender » Antivirus Plus » Version: 12.0

cpe:2.3:a:bitdefender:antivirus_plus:12.0
Bitdefender » Antivirus Plus » Version: 23.0.24.120

cpe:2.3:a:bitdefender:antivirus_plus:23.0.24.120
Bitdefender » Antivirus Plus » Version: 24.0.26.136

cpe:2.3:a:bitdefender:antivirus_plus:24.0.26.136
Bitdefender » Antivirus Plus » Version: 25.0.7.29

cpe:2.3:a:bitdefender:antivirus_plus:25.0.7.29
Bitdefender » Antivirus Plus » Version: 26.0.10.45

cpe:2.3:a:bitdefender:antivirus_plus:26.0.10.45
Bitdefender » Antivirus Plus » Version: 26.0.3.29

cpe:2.3:a:bitdefender:antivirus_plus:26.0.3.29
Bitdefender » Antivirus Plus » Version: 27.0.25.114

cpe:2.3:a:bitdefender:antivirus_plus:27.0.25.114
Bitdefender » Endpoint Security Tools » Version: N/A

cpe:2.3:a:bitdefender:endpoint_security_tools:-
Bitdefender » Endpoint Security Tools » Version: 6.6.18.261

cpe:2.3:a:bitdefender:endpoint_security_tools:6.6.18.261
Bitdefender » Endpoint Security Tools » Version: 6.6.23.320

cpe:2.3:a:bitdefender:endpoint_security_tools:6.6.23.320
Bitdefender » Endpoint Security Tools » Version: 7.4.1.111

cpe:2.3:a:bitdefender:endpoint_security_tools:7.4.1.111
Bitdefender » Endpoint Security Tools » Version: 7.4.3.146

cpe:2.3:a:bitdefender:endpoint_security_tools:7.4.3.146
Bitdefender » Internet Security » Version: N/A

cpe:2.3:a:bitdefender:internet_security:-
Bitdefender » Internet Security » Version: 12.0

cpe:2.3:a:bitdefender:internet_security:12.0
Bitdefender » Internet Security » Version: 23.0.24.120

cpe:2.3:a:bitdefender:internet_security:23.0.24.120
Bitdefender » Internet Security » Version: 24.0.26.136

cpe:2.3:a:bitdefender:internet_security:24.0.26.136
Bitdefender » Internet Security » Version: 25.0.7.29

cpe:2.3:a:bitdefender:internet_security:25.0.7.29
Bitdefender » Internet Security » Version: 26.0.10.45

cpe:2.3:a:bitdefender:internet_security:26.0.10.45
Bitdefender » Internet Security » Version: 26.0.3.29

cpe:2.3:a:bitdefender:internet_security:26.0.3.29
Bitdefender » Internet Security » Version: 27.0.25.114

cpe:2.3:a:bitdefender:internet_security:27.0.25.114
Bitdefender » Total Security » Version: N/A

cpe:2.3:a:bitdefender:total_security:-
Bitdefender » Total Security » Version: 12.0

cpe:2.3:a:bitdefender:total_security:12.0
Bitdefender » Total Security » Version: 21.0.24.62

cpe:2.3:a:bitdefender:total_security:21.0.24.62
Bitdefender » Total Security » Version: 23.0.24.120

cpe:2.3:a:bitdefender:total_security:23.0.24.120
Bitdefender » Total Security » Version: 24.0.26.136

cpe:2.3:a:bitdefender:total_security:24.0.26.136
Bitdefender » Total Security » Version: 25.0.7.29

cpe:2.3:a:bitdefender:total_security:25.0.7.29
Bitdefender » Total Security » Version: 26.0.10.45

cpe:2.3:a:bitdefender:total_security:26.0.10.45
Bitdefender » Total Security » Version: 26.0.3.29

cpe:2.3:a:bitdefender:total_security:26.0.3.29
Bitdefender » Total Security » Version: 27.0.25.114

cpe:2.3:a:bitdefender:total_security:27.0.25.114
Bitdefender » Total Security » Version: 27.0.25.115

cpe:2.3:a:bitdefender:total_security:27.0.25.115
Bitdefender » Total Security » Version: 7.2.1.65

cpe:2.3:a:bitdefender:total_security:7.2.1.65

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-7073

Products

Pricing

Contact Us