First published: Tue May 18 2021(Updated: )
An Improper Access Control vulnerability in the logging component of Bitdefender Endpoint Security Tools for Windows versions prior to 6.6.23.320 allows a regular user to learn the scanning exclusion paths. This issue was discovered during external security research.
Credit: cve-requests@bitdefender.com
Affected Software | Affected Version | How to fix |
---|---|---|
Bitdefender Endpoint Security Tools | <6.6.23.320 |
An automatic update to version 6.6.23.320 fixes the issue.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2020-15279.
The title of the vulnerability is 'An Improper Access Control vulnerability in the logging component of Bitdefender Endpoint Security Tools for Windows'.
CVE-2020-15279 has a severity level of medium.
A regular user can exploit this vulnerability to learn the scanning exclusion paths.
Yes, a fix is available for this vulnerability. Users should update Bitdefender Endpoint Security Tools for Windows to version 6.6.23.320 or later.