First published: Mon Apr 12 2021(Updated: )
An Origin Validation Error vulnerability in Bitdefender Safepay allows an attacker to manipulate the browser's file upload capability into accessing other files in the same directory or sub-directories. This issue affects: Bitdefender Safepay versions prior to 25.0.7.29.
Credit: cve-requests@bitdefender.com
Affected Software | Affected Version | How to fix |
---|---|---|
Bitdefender SafePay | <25.0.7.29 |
An automatic update to version 25.0.7.29 fixes the issue.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2020-15734 is medium with a severity value of 5.5.
Bitdefender Safepay versions prior to 25.0.7.29 are affected by CVE-2020-15734.
CVE-2020-15734 is an Origin Validation Error vulnerability in Bitdefender Safepay that allows an attacker to manipulate the browser's file upload capability to access other files in the same or sub-directories.
To fix CVE-2020-15734, update Bitdefender Safepay to version 25.0.7.29 or later.
You can find more information about CVE-2020-15734 on the Bitdefender Security Advisories page: [link](https://www.bitdefender.com/support/security-advisories/origin-policy-vulnerability-bitdefender-safepay/).