A
n Incorrect Regular Expression vulnerability in Bitdefender GravityZone Update Server allows an attacker to cause a Server Side Request Forgery and reconfigure the relay. This issue affects the following products that include the vulnerable component: Bitdefender Endpoint Security for Linux version 7.0.5.200089 Bitdefender Endpoint Security for Windows version 7.9.9.380 GravityZone Control Center (On Premises) version 6.36.1
References
Configurations
Configuration 1 (hide)
|
History
07 Feb 2025, 19:00
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:a:bitdefender:endpoint_security:7.9.9.380:*:*:*:*:windows:*:* cpe:2.3:a:bitdefender:gravityzone_control_center:6.36.1:*:*:*:on_premises:*:*:* cpe:2.3:a:bitdefender:endpoint_security:7.0.5.200089:*:*:*:*:linux:*:* |
|
| First Time |
Bitdefender
Bitdefender endpoint Security Bitdefender gravityzone Control Center |
|
| References | () https://www.bitdefender.com/support/security-advisories/incorrect-regular-expression-in-gravityzone-update-server-va-11465/ - Vendor Advisory | |
| CWE | CWE-697 |
21 Nov 2024, 09:09
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://www.bitdefender.com/support/security-advisories/incorrect-regular-expression-in-gravityzone-update-server-va-11465/ - |
Information
Published : 2024-04-09 13:15
Updated : 2025-02-07 19:00
NVD link : CVE-2024-2223
Mitre link : CVE-2024-2223
CVE.ORG link : CVE-2024-2223
JSON object : View
Products Affected