CVE-2019-17100

MEDIUM

Bitdefender Total Security 2020 < 24.0.12.69 - Untrusted Search Path in bdserviceshost.exe

Title source: llm

Description

An Untrusted Search Path vulnerability in bdserviceshost.exe as used in Bitdefender Total Security 2020 allows an attacker to execute arbitrary code. This issue does not affect: Bitdefender Total Security versions prior to 24.0.12.69.

References (1)

Core 1

Core References

Vendor Advisory x_refsource_misc

https://www.bitdefender.com/support/security-advisories/untrusted-search-path-vulnerability-bitdefender-total-security-2020-va-5895/

Scores

CVSS v3 5.2

EPSS 0.0034

EPSS Percentile 25.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L

Details

CWE

CWE-426

Status published

Products (1)

bitdefender/total_security_2020 < 24.0.12.69

Published Jan 27, 2020

Tracked Since Feb 18, 2026