Today there are many solutions security for protection an online risk business. However, sometimes the solutions themselves can be risk for business. This is also the case with Bitdefender antivirus, which contains one vulnerability which allows remote execution of malicious code.
The vulnerability, called CVE-2020–8102, affects the recently updated version of Bitdefender antivirus. Security researchers claim that this vulnerability could have a major impact, as the antivirus in which it was found is used by many users to protect their systems.
According to the researchers, the vulnerability is due to incorrect validation of the browser. Safepay which is its highlight Bitdefender Total Security 2020.
It may allow an external, custom-made website to handle remote commands within the process. Safepay Utility. According to the researchers, this vulnerability affects Bitdefender Total Security 2020 versions 126.96.36.199.
- CVE ID: CVE-2020-8102
- CVSS score: 8.8
- Influential providers: Bitdefender
- Affected products: Bitdefender SafePay
Antivirus programs are used to protect them Appliances and keep them safe from online risks. However when protection programs themselves may allow hackers take advantage of them, they can have very negative effects on a business or user.
In addition, Bitdefender is investigating this issue and has installed an automatic update that fixes this vulnerability on 188.8.131.52 and will also fix all subsequent versions.