Known Vulnerabilities for Gravityzone by Bitdefender
Listed below are 10 of the newest known vulnerabilities associated with "Gravityzone" by "Bitdefender".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-2830 json | Deserialization of Untrusted Data vulnerability in the message processing component of Bitdefender GravityZone Console allows... | 9.8 - CRITICAL | 2022-09-05 | 2022-09-09 |
| CVE-2022-0677 json | Improper Handling of Length Parameter Inconsistency vulnerability in the Update Server component of Bitdefender Endpoint Secu... | 7.5 - HIGH | 2022-04-07 | 2022-04-14 |
| CVE-2021-3960 json | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in the UpdateServer component of... | 7.8 - HIGH | 2021-12-16 | 2021-12-21 |
| CVE-2021-3959 json | A Server-Side Request Forgery (SSRF) vulnerability in the EPPUpdateService component of Bitdefender Endpoint Security Tools a... | 7.5 - HIGH | 2021-12-16 | 2021-12-22 |
| CVE-2021-3823 json | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in the UpdateServer component of... | 9.8 - CRITICAL | 2021-10-28 | 2021-11-03 |
| CVE-2021-3641 json | Improper Link Resolution Before File Access ('Link Following') vulnerability in the EPAG component of Bitdefender Endpoint Se... | 6.1 - MEDIUM | 2021-11-09 | 2022-02-09 |
| CVE-2021-3554 json | Improper Access Control vulnerability in the patchesUpdate API as implemented in Bitdefender Endpoint Security Tools for Linu... | 10 - CRITICAL | 2021-11-24 | 2022-04-25 |
| CVE-2021-3553 json | A Server-Side Request Forgery (SSRF) vulnerability in the EPPUpdateService of Bitdefender Endpoint Security Tools allows an a... | 7.5 - HIGH | 2021-11-24 | 2021-11-30 |
| CVE-2021-3552 json | A Server-Side Request Forgery (SSRF) vulnerability in the EPPUpdateService component of Bitdefender Endpoint Security Tools a... | 7.5 - HIGH | 2021-11-24 | 2021-12-01 |
| CVE-2018-8955 json | The installer for BitDefender GravityZone relies on an encoded string in a filename to determine the URL for installation met... | 9.8 - CRITICAL | 2018-10-24 | 2019-01-25 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Bitdefender | Gravityzone | 6.5.3-70 | |||
| Application | Bitdefender | Gravityzone | 6.3.9-3 | |||
| Application | Bitdefender | Gravityzone | 6.3.7-7 | |||
| Application | Bitdefender | Gravityzone | 6.3.7-1 | |||
| Application | Bitdefender | Gravityzone | 6.3.5-4 | |||
| Application | Bitdefender | Gravityzone | 6.3.5-3 | |||
| Application | Bitdefender | Gravityzone | 6.3.5-2 | |||
| Application | Bitdefender | Gravityzone | 6.3.3-9 | |||
| Application | Bitdefender | Gravityzone | 6.3.3-8 | |||
| Application | Bitdefender | Gravityzone | 6.3.3-4 | |||
| Application | Bitdefender | Gravityzone | 6.3.3-3 | |||
| Application | Bitdefender | Gravityzone | 6.3.3-2 | |||
| Application | Bitdefender | Gravityzone | 6.3.1-4 | |||
| Application | Bitdefender | Gravityzone | 6.2.1-35 | |||
| Application | Bitdefender | Gravityzone | 6.2.1-34 | |||
| Application | Bitdefender | Gravityzone | 6.2.1-30 | |||
| Application | Bitdefender | Gravityzone | 6.1.41-549 | |||
| Application | Bitdefender | Gravityzone | 6.1.29-547 | |||
| Application | Bitdefender | Gravityzone | 6.1.29-546 | |||
| Application | Bitdefender | Gravityzone | 6.1.29-545 |