Buffer Overflow in Bitdefender Engines Leading to Potential Denial-of-Service
CVE-2018-18060
5.3MEDIUM
What is CVE-2018-18060?
A vulnerability has been identified in the parsing process of the dalvik.xmd in Bitdefender Engines, resulting from inadequate validation of user-supplied data. This flaw can potentially allow for a read beyond the allocated buffer, which, when combined with other vulnerabilities, may lead to a denial-of-service scenario. Exploitation requires user interaction, as the victim must either visit a malicious webpage or open a harmful file.
References
CVSS V3.1
Score:
5.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved