Unrated severityNVD Advisory· Published Oct 28, 2021· Updated Sep 17, 2024
Privilege escalation via SeImpersonatePrivilege
CVE-2021-3576
Description
Execution with Unnecessary Privileges vulnerability in Bitdefender Endpoint Security Tools, Total Security allows a local attacker to elevate to 'NT AUTHORITY\System. Impersonation enables the server thread to perform actions on behalf of the client but within the limits of the client's security context. This issue affects: Bitdefender Endpoint Security Tools versions prior to 7.2.1.65. Bitdefender Total Security versions prior to 25.0.26.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4<25.0.26+ 1 more
- (no CPE)range: <25.0.26
- (no CPE)range: unspecified
<7.2.1.65+ 1 more
- (no CPE)range: <7.2.1.65
- (no CPE)range: unspecified
Patches
Vulnerability mechanics
References
3- www.bitdefender.com/support/security-advisories/privilege-escalation-via-seimpersonateprivilege-in-bitdefender-endpoint-security-tools-va-9848/mitrex_refsource_MISC
- www.zerodayinitiative.com/advisories/ZDI-21-1276/mitrex_refsource_MISC
- www.zerodayinitiative.com/advisories/ZDI-21-1376/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.