Unrated severityNVD Advisory· Published Jan 13, 2025· Updated Jan 14, 2025

Insufficient Hardened Runtime or Library Validation signing in Bitdefender Virus Scanner for macOS

CVE-2024-11128

Description

A vulnerability in the BitdefenderVirusScanner binary as used in Bitdefender Virus Scanner for MacOS may allow .dynamic library injection (DYLD injection) without being blocked by AppleMobileFileIntegrity (AMFI). This issue is caused by the absence of Hardened Runtime or Library Validation signing. This issue affects Bitdefender Virus Scanner versions before 3.18.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Bitdefender/Virus Scanner for MacOSllm-create2 versions
<3.18+ 1 more
- (no CPE)range: <3.18
- (no CPE)range: 0

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.bitdefender.com/support/security-advisories/insufficient-hardened-runtime-or-library-validation-signing-in-bitdefender-virus-scanner-for-macos/mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000