CVE-2025-5317

MEDIUM

Bitdefender Endpoint Security Tools for Mac < 7.20.52.200087 - Missing Authorization for Uninstall Password Bypass

Title source: llm

Description

An improper access restriction to a folder in Bitdefender Endpoint Security Tools for Mac (BEST) before 7.20.52.200087 allows local users with administrative privileges to bypass the configured uninstall password protection. An unauthorized user with sudo privileges can manually remove the application directory (/Applications/Endpoint Security for Mac.app/) and the related directories within /Library/Bitdefender/AVP without needing the uninstall password.

References (1)

Core 1

Core References

Vendor Advisory

https://www.bitdefender.com/support/security-advisories/improper-access-restriction-to-critical-folder-in-bitdefender-endpoint-security-tools-for-mac/

Scores

CVSS v3 5.5

EPSS 0.0009

EPSS Percentile 0.6%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-862

Status published

Products (1)

bitdefender/endpoint_security < 7.20.52.200087

Published Nov 11, 2025

Tracked Since Feb 18, 2026