Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-6154

A configuration setting issue in seccenter.exe as used in Bitdefender Total Security, Bitdefender Internet Security, Bitdefender Antivirus Plus, Bitdefender Antivirus Free allows an attacker to change the product's expected behavior and potentially load a third-party library upon execution. This issue affects Total Security: 27.0.25.114; Internet Security: 27.0.25.114; Antivirus Plus: 27.0.25.114; Antivirus Free: 27.0.25.114.

Published

2024-04-01T11:15:52.437

Last Modified

2025-02-07T16:52:05.940

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 7.8 (HIGH)

Weaknesses

Type: Secondary
CWE-15
Type: Primary
CWE-610

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	bitdefender	antivirus	27.0.25.114	Yes
Application	bitdefender	antivirus_plus	27.0.25.114	Yes
Application	bitdefender	internet_security	27.0.25.114	Yes
Application	bitdefender	total_security	27.0.25.114	Yes

References

https://bitdefender.com/support/security-advisories/local-privilege-escalation-in-bitdefender-total-security-va-11168/ Vendor Advisory ([email protected])
https://bitdefender.com/support/security-advisories/local-privilege-escalation-in-bitdefender-total-security-va-11168/ Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)