CPE-EB9D899D-73D1-45F0-8253-AC6937AA77C0 Detail

CPE Details

Bitdefender GravityZone 3.3.8.249

Vendor

bitdefender

Product

gravityzone

Version

3.3.8.249

Created

2021-11-01
13h13 +00:00

Modified

2021-11-09
13h46 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:bitdefender:gravityzone:3.3.8.249:::::::*

Informations

Vendor

bitdefender

Product

gravityzone

Version

3.3.8.249

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2022-0677	2022-04-07 18h21 +00:00	Improper Handling of Length Parameter Inconsistency vulnerability in the Update Server component of Bitdefender Endpoint Security Tools (in relay role), GravityZone (in Update Server role) allows an attacker to cause a Denial-of-Service. This issue affects: Bitdefender Update Server versions prior to 3.4.0.276. Bitdefender GravityZone versions prior to 26.4-1. Bitdefender Endpoint Security Tools for Linux versions prior to 6.2.21.171. Bitdefender Endpoint Security Tools for Windows versions prior to 7.4.1.111.	7.5	High
CVE-2021-3960	2021-12-16 14h40 +00:00	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in the UpdateServer component of Bitdefender GravityZone allows an attacker to execute arbitrary code on vulnerable instances. This issue affects Bitdefender GravityZone versions prior to 3.3.8.272	7.8	High
CVE-2021-3959	2021-12-16 14h35 +00:00	A Server-Side Request Forgery (SSRF) vulnerability in the EPPUpdateService component of Bitdefender Endpoint Security Tools allows an attacker to proxy requests to the relay server. This issue affects: Bitdefender Bitdefender GravityZone versions prior to 3.3.8.272	7.5	High
CVE-2021-3554	2021-11-24 14h45 +00:00	Improper Access Control vulnerability in the patchesUpdate API as implemented in Bitdefender Endpoint Security Tools for Linux as a relay role allows an attacker to manipulate the remote address used for pulling patches. This issue affects: Bitdefender Endpoint Security Tools for Linux versions prior to 6.6.27.390; versions prior to 7.1.2.33. Bitdefender Unified Endpoint versions prior to 6.2.21.160. Bitdefender GravityZone versions prior to 6.24.1-1.	10	Critical
CVE-2021-3641	2021-11-09 14h10 +00:00	Improper Link Resolution Before File Access ('Link Following') vulnerability in the EPAG component of Bitdefender Endpoint Security Tools for Windows allows a local attacker to cause a denial of service. This issue affects: Bitdefender GravityZone version 7.1.2.33 and prior versions.	6.1	Medium
CVE-2017-8931	2018-10-30 18h00 +00:00	Bitdefender GravityZone VMware appliance before 6.2.1-35 might allow attackers to gain access with root privileges via unspecified vectors.	9.8	Critical
CVE-2014-5350	2014-08-19 19h00 +00:00	Multiple directory traversal vulnerabilities in Bitdefender GravityZone before 5.1.11.432 allow remote attackers to read arbitrary files via a (1) .. (dot dot) in the id parameter to webservice/CORE/downloadFullKitEpc/a/1 in the Web Console or (2) %2E%2E (encoded dot dot) in the default URI to port 7074 on the Update Server.	5

Bitdefender GravityZone 3.3.8.249

CPE Details

CPE Name: cpe:2.3:a:bitdefender:gravityzone:3.3.8.249:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:bitdefender:gravityzone:3.3.8.249:::::::*