Privilege escalation in Bitdefender AV for Mac
CVE-2020-8092

1.6LOW

Key Information:

Vendor

Bitdefender

Status
Bitdefender Antivirus For Mac
Vendor
CVE Published:
30 January 2020
đź”” Create Bitdefender Vulnerability Alert

What is CVE-2020-8092?

A privilege escalation vulnerability in BDLDaemon as used in Bitdefender Antivirus for Mac allows a local attacker to obtain authentication tokens for requests submitted to the Bitdefender Cloud. This issue affects: Bitdefender Bitdefender Antivirus for Mac versions prior to 8.0.0.

Affected Version(s)

Bitdefender Antivirus for Mac < 8.0.0

References

https://www.bitdefender.com/support/security-advisories/p...
x_refsource_MISC

CVSS V3.1

Score:
1.6
Severity:
LOW
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Physical
Attack Complexity:
High
Privileges Required:
High
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Bugcrowd user Bohops
.