CVE-2020-8103

HIGH

Bitdefender Antivirus Free <1.0.17.178 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-8103. PoCs published by RedyOpsResearchLabs.

AI-analyzed exploit summary This repository contains a functional exploit for CVE-2020-8103, an Elevation of Privilege (EoP) vulnerability in Bitdefender Antivirus Free. The exploit leverages symbolic link manipulation techniques, based on James Forshaw's symboliclink-testing-tools, to achieve privilege escalation.

Description

A vulnerability in the improper handling of symbolic links in Bitdefender Antivirus Free can allow an unprivileged user to substitute a quarantined file, and restore it to a privileged location. This issue affects Bitdefender Antivirus Free versions prior to 1.0.17.178.

Exploits (1)

nomisec WORKING POC 16 stars
by RedyOpsResearchLabs · poc
https://github.com/RedyOpsResearchLabs/-CVE-2020-8103-Bitdefender-Antivirus-Free-EoP

This repository contains a functional exploit for CVE-2020-8103, an Elevation of Privilege (EoP) vulnerability in Bitdefender Antivirus Free. The exploit leverages symbolic link manipulation techniques, based on James Forshaw's symboliclink-testing-tools, to achieve privilege escalation.

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: Bitdefender Antivirus Free
No auth needed
Prerequisites: Local access to a vulnerable system with Bitdefender Antivirus Free installed
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (1)

Core 1

Scores

CVSS v3 7.2
EPSS 0.0080
EPSS Percentile 52.0%
Attack Vector PHYSICAL
CVSS:3.1/AV:P/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

Details

CWE
CWE-59
Status published
Products (1)
bitdefender/antivirus_2020 < 1.0.17.178
Published Jun 05, 2020
Tracked Since Feb 18, 2026