First published: Sat Oct 30 2021(Updated: )
Improper Link Resolution Before File Access ('Link Following') vulnerability in the EPAG component of Bitdefender Endpoint Security Tools for Windows allows a local attacker to cause a denial of service. This issue affects: Bitdefender GravityZone version 7.1.2.33 and prior versions.
Credit: cve-requests@bitdefender.com
Affected Software | Affected Version | How to fix |
---|---|---|
Bitdefender GravityZone | <=7.1.2.33 | |
Microsoft Windows | ||
An automatic update to a newer version of Bitdefender Endpoint Security Tools for Windows fixes the issue
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-3641 is a vulnerability that allows local attackers to create a denial-of-service condition on affected installations of Bitdefender GravityZone.
To exploit CVE-2021-3641, attackers must first obtain the ability to execute low-privileged code on the target system.
CVE-2021-3641 affects Bitdefender GravityZone versions up to 7.1.2.33.
CVE-2021-3641 has a severity score of 6.1 (medium).
To fix CVE-2021-3641, it is recommended to update Bitdefender GravityZone to the latest version available.