Buffer Overflow in Bitdefender Engines Leading to Potential Denial-of-Service
CVE-2018-18060

5.3MEDIUM

Key Information:

Vendor: Bitdefender
Status: Scan Engines
Vendor: CVE Published:; 24 May 2019

🔔 Create Bitdefender Vulnerability Alert

What is CVE-2018-18060?

A vulnerability has been identified in the parsing process of the dalvik.xmd in Bitdefender Engines, resulting from inadequate validation of user-supplied data. This flaw can potentially allow for a read beyond the allocated buffer, which, when combined with other vulnerabilities, may lead to a denial-of-service scenario. Exploitation requires user interaction, as the victim must either visit a malicious webpage or open a harmful file.

References

https://www.bitdefender.com/

x_refsource_MISC

https://www.bitdefender.com/support/security-advisories/b...

x_refsource_MISC

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 24, 2019
Vulnerability Reserved
Oct 8, 2018