First published: Fri Feb 18 2022(Updated: )
A Process Control vulnerability in ProductAgentUI.exe as used in Bitdefender Antivirus Plus allows an attacker to tamper with product settings via a specially crafted DLL file. This issue affects: Bitdefender Antivirus Plus versions prior to 24.0.26.136. Bitdefender Internet Security versions prior to 24.0.26.136. Bitdefender Total Security versions prior to 24.0.26.136.
Credit: cve-requests@bitdefender.com
Affected Software | Affected Version | How to fix |
---|---|---|
Bitdefender Antivirus Plus | <24.0.26.136 | |
BitDefender Internet Security | <24.0.26.136 | |
Bitdefender Total Security | <24.0.26.136 |
An automatic update to version 24.0.26.136 fixes the issue.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-8107 is a Process Control vulnerability in ProductAgentUI.exe as used in Bitdefender Antivirus Plus that allows an attacker to tamper with product settings via a specially crafted DLL file.
Bitdefender Antivirus Plus versions prior to 24.0.26.136 are affected by CVE-2020-8107.
Bitdefender Internet Security versions prior to 24.0.26.136 are affected by CVE-2020-8107.
Bitdefender Total Security versions prior to 24.0.26.136 are affected by CVE-2020-8107.
CVE-2020-8107 has a severity score of 7.8 (high).
To fix CVE-2020-8107, users should update Bitdefender Antivirus Plus, Bitdefender Internet Security, and Bitdefender Total Security to version 24.0.26.136 or later.