CVE-2018-18058

MEDIUM

Bitdefender Scan Engines < 7.76662 - Divide By Zero

Title source: rule

Description

An issue was discovered in Bitdefender Engines before 7.76662. A vulnerability has been discovered in the iso.xmd parser that results from a lack of proper validation of user-supplied data, which can result in a division-by-zero circumstance. Paired with other vulnerabilities, this can result in denial-of-service. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

References (2)

[Vendor Advisory] https://www.bitdefender.com/

[Vendor Advisory] https://www.bitdefender.com/support/security-advisories/bitdefender-iso-xmd-iso-parsing-bounds-read-vulnerability/

Scores

CVSS v3 5.3

EPSS 0.0045

EPSS Percentile 63.2%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

Classification

CWE

CWE-369

Status published

Affected Products (1)

bitdefender/scan_engines < 7.76662

Timeline

Published May 24, 2019

Tracked Since Feb 18, 2026