A local privilege escalation vulnerability in Bitdefender Total Security versions prior to 27.0.47.241 allows low-privileged attackers to elevate privileges. The issue arises from bdservicehost.exe deleting files from a user-writable directory (C:\ProgramData\Atc\Feedback) without proper symbolic link validation, enabling arbitrary file deletion. This issue is chained with a file copy operation during network events and a filter driver bypass via DLL injection to achieve arbitrary file copy and code execution as elevated user.
CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XBitdefender Antivirus
APPBitdefender< 30.0.25.77Bitdefender Antivirus Plus
APPBitdefender< 27.0.47.241Bitdefender Endpoint Security Tools
APPBitdefender< 7.9.20.515Bitdefender Internet Security
APPBitdefender< 27.0.47.241Bitdefender Total Security
APPBitdefender< 27.0.47.241
Related vulnerabilities
Improper Access Control vulnerability in the patchesUpdate API as implemented in Bitdefender Endpoint Security...
Unspecified vulnerability in BitDefender allows attackers to execute arbitrary code via unspecified vectors, a...
A vulnerability has been identified in the Bitdefender Total Security HTTPS scanning functionality where the p...
A vulnerability has been identified in Bitdefender Total Security HTTPS scanning functionality where the softw...
A vulnerability has been identified in Bitdefender Total Security HTTPS scanning functionality where the softw...