Privilege escalation via SeImpersonatePrivilege
CVE-2021-3576

7.8HIGH

Key Information:

Vendor

Bitdefender

Status
Endpoint Security Tools
Total Security
Vendor
CVE Published:
12 October 2021

What is CVE-2021-3576?

Execution with Unnecessary Privileges vulnerability in Bitdefender Endpoint Security Tools, Total Security allows a local attacker to elevate to 'NT AUTHORITY\System. Impersonation enables the server thread to perform actions on behalf of the client but within the limits of the client's security context. This issue affects: Bitdefender Endpoint Security Tools versions prior to 7.2.1.65. Bitdefender Total Security versions prior to 25.0.26.

Affected Version(s)

Endpoint Security Tools < 7.2.1.65

Total Security < 25.0.26

References

https://www.bitdefender.com/support/security-advisories/p...
x_refsource_MISC
https://www.zerodayinitiative.com/advisories/ZDI-21-1276/
x_refsource_MISC
https://www.zerodayinitiative.com/advisories/ZDI-21-1376/
x_refsource_MISC

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Zero-Day Initiative (ZDI)
.