CVE-2020-8093 MEDIUM

CVE-2020-8093: Code Injection into Bitdefender AV for Mac

Vendor Bitdefender

Product Bitdefender Antivirus for Mac

Weakness CWE-264

Published January 29, 2020

Last update September 17, 2024

View on NVD All CVEs

CVSS base score

5.3/10

Attack vector Local

Attack complexity Low

Privileges required Low

User interaction None

Confidentiality Low

Integrity Low

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

What the vulnerability does

01Description

A vulnerability in the AntivirusforMac binary as used in Bitdefender Antivirus for Mac allows an attacker to inject a library using DYLD environment variable to cause third-party code execution

Key dates

02Disclosure timeline

January 29, 2020 CVE published

September 17, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2020-8093

Related vulnerabilities

Identifiers

CVE CVE-2020-8093

CWE CWE-264

CVSS 5.3 / MEDIUM

Affected versions