VYPR

Update Server

by Bitdefender

CVEs (4)

  • CVE-2008-0396Jan 23, 2008
    risk 0.04cvss epss 0.09

    Directory traversal vulnerability in BitDefender Update Server (http.exe), as used in BitDefender products including Security for Fileservers and Enterprise Manager (BDEM), allows remote attackers to read arbitrary files via .. (dot dot) sequences in an HTTP request.

  • CVE-2024-4177Jun 6, 2024
    risk 0.00cvss epss 0.00

    A host whitelist parser issue in the proxy service implemented in the GravityZone Update Server allows an attacker to cause a server-side request forgery. This issue only affects GravityZone Console versions before 6.38.1-2 that are running only on premise.

  • CVE-2022-0677Apr 7, 2022
    risk 0.00cvss epss 0.01

    Improper Handling of Length Parameter Inconsistency vulnerability in the Update Server component of Bitdefender Endpoint Security Tools (in relay role), GravityZone (in Update Server role) allows an attacker to cause a Denial-of-Service. This issue affects: Bitdefender Update…

  • CVE-2020-15297Nov 9, 2020
    risk 0.00cvss epss 0.01

    Insufficient validation in the Bitdefender Update Server and BEST Relay components of Bitdefender Endpoint Security Tools versions prior to 6.6.20.294 allows an unprivileged attacker to bypass the in-place mitigations and interact with hosts on the network. This issue affects:…