GCVE - cpe:2.3:a:bitdefender:engines:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:bitdefender:engines:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Bitdefender (`d5582d91-5be9-5b61-8324-642705c220ed`)
Product	Engines (`114cf5f5-7557-5af7-a9d4-93d0e4ac27ed`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2023-3633`	vulnerable	2026-06-03 14:52:41.356689	Out of Bounds Memory Corruption Issue in CEVA Engine HIGH (8.1) An out-of-bounds write vulnerability in Bitdefender Engines on Windows causes the engine to crash. This issue affects Bitdefender Engines version 7.94791 and lower. Published: 2023-07-14T19:29:34.392Z Updated: 2024-10-30T19:10:05.990Z Open on db.gcve.eu Reference links https://www.bitdefender.com/support/security-advisories/out-of-bounds-memory-corruption-issue-in-ceva-engine-va-11010	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-3369`	vulnerable	2026-06-03 14:47:58.205895	Improper handling of registry symbolic links in Bitdefender Engines HIGH (8.6) An Improper Access Control vulnerability in the bdservicehost.exe component, as used in Bitdefender Engines for Windows, allows an attacker to delete privileged registry keys by pointing a Registry symlink to a privileged key. This issue affects: Bitdefender Engines versions prior to 7.92659. It also affects Bitdefender Antivirus Free, Bitdefender Antivirus Plus, Bitdefender Internet Security, Bitdefender Total Security, as well as Bitdefender Endpoint Security Tools for Windows with engine versions prior to 7.92659. Published: 2022-11-01T07:45:19.436Z Updated: 2025-05-02T16:06:44.011Z Open on db.gcve.eu Reference links https://www.bitdefender.com/support/security-advisories/improper-handling-of-registry-symbolic-links-in-bitdefender-engines-va-10562	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-8110`	vulnerable	2026-06-03 14:43:08.013924	Bitdefender ceva_emu.cvd module denial-of-service (VA-8766) MEDIUM (5.9) A vulnerability has been discovered in the ceva_emu.cvd module that results from a lack of proper validation of user-supplied data, which can result in a pointer that is fetched from uninitialized memory. This can lead to denial-of-service. This issue affects: Bitdefender Engines version 7.84897 and prior versions. Published: 2020-10-02T09:55:17.917Z Updated: 2024-09-16T21:03:42.414Z Open on db.gcve.eu Reference links https://www.bitdefender.com/support/security-advisories/bitdefender-cevakrnl-xmd-parser-denial-of-service-va-8766	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-8109`	vulnerable	2026-06-03 14:43:08.013577	Bitdefender ace.xmd parser out-of-bounds write (VA-8772) MEDIUM (5.9) A vulnerability has been discovered in the ace.xmd parser that results from a lack of proper validation of user-supplied data, which can result in a write past the end of an allocated buffer. This can result in denial-of-service. This issue affects: Bitdefender Engines version 7.84892 and prior versions. Published: 2020-10-01T13:05:23.197Z Updated: 2024-09-17T02:27:57.606Z Open on db.gcve.eu Reference links https://www.bitdefender.com/support/security-advisories/bitdefender-ace-xmd-parser-out-of-bounds-write-va-8772	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-8100`	vulnerable	2026-06-03 14:43:07.996584	Incomplete validation in detection code in Bitdefender Engines (VA-8589) CRITICAL (9) Improper Input Validation vulnerability in the cevakrnl.rv0 module as used in the Bitdefender Engines allows an attacker to trigger a denial of service while scanning a specially-crafted sample. This issue affects: Bitdefender Bitdefender Engines versions prior to 7.84063. Published: 2020-05-15T09:20:11.849Z Updated: 2024-09-16T20:43:36.252Z Open on db.gcve.eu Reference links https://www.bitdefender.com/support/security-advisories/incomplete-validation-detection-code-bitdefender-engines-va-8589/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-15731`	vulnerable	2026-06-03 14:41:46.348820	Local Privilege Escalation in Bitdefender Engines (VA-8953) LOW (3.2) An improper Input Validation vulnerability in the code handling file renaming and recovery in Bitdefender Engines allows an attacker to write an arbitrary file in a location hardcoded in a specially-crafted malicious file name. This issue affects: Bitdefender Engines versions prior to 7.85448. Published: 2020-09-30T11:55:18.065Z Updated: 2024-09-16T22:20:25.774Z Open on db.gcve.eu Reference links https://www.bitdefender.com/support/security-advisories/local-privilege-escalation-in-bitdefender-engines-va-8953	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.