Known Vulnerabilities for Endpoint Security Tools by Bitdefender

Listed below are 10 of the newest known vulnerabilities associated with "Endpoint Security Tools" by "Bitdefender".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2025-7073 json Not Provided 2025-12-10 2026-03-31
CVE-2022-0677 json Improper Handling of Length Parameter Inconsistency vulnerability in the Update Server component of Bitdefender Endpoint Secu... 7.5 - HIGH 2022-04-07 2022-04-14
CVE-2021-4199 json Incorrect Permission Assignment for Critical Resource vulnerability in the crash handling component BDReinit.exe as used in B... 7.8 - HIGH 2022-03-07 2022-03-11
CVE-2021-4198 json A NULL Pointer Dereference vulnerability in the messaging_ipc.dll component as used in Bitdefender Total Security, Internet S... 6.1 - MEDIUM 2022-03-07 2022-03-11
CVE-2021-3579 json Incorrect Default Permissions vulnerability in the bdservicehost.exe and Vulnerability.Scan.exe components as used in Bitdefe... 7.8 - HIGH 2021-10-28 2021-11-28
CVE-2021-3576 json Execution with Unnecessary Privileges vulnerability in Bitdefender Endpoint Security Tools, Total Security allows a local att... 7.8 - HIGH 2021-10-28 2022-04-25
CVE-2021-3554 json Improper Access Control vulnerability in the patchesUpdate API as implemented in Bitdefender Endpoint Security Tools for Linu... 10 - CRITICAL 2021-11-24 2022-04-25
CVE-2021-3553 json A Server-Side Request Forgery (SSRF) vulnerability in the EPPUpdateService of Bitdefender Endpoint Security Tools allows an a... 7.5 - HIGH 2021-11-24 2021-11-30
CVE-2021-3552 json A Server-Side Request Forgery (SSRF) vulnerability in the EPPUpdateService component of Bitdefender Endpoint Security Tools a... 7.5 - HIGH 2021-11-24 2021-12-01
CVE-2021-3485 json An Improper Input Validation vulnerability in the Product Update feature of Bitdefender Endpoint Security Tools for Linux all... 6.6 - MEDIUM 2021-05-24 2023-11-07
Results limited to 10 most recent vulnerabilities

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language
ApplicationBitdefenderEndpoint Security Tools6.6.11.163
ApplicationBitdefenderEndpoint Security Tools-
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report