CVE-2020-8096 MEDIUM

CVE-2020-8096: Untrusted Search Path Vulnerability in High-Level Antimalware SDK

Vendor Bitdefender
Product High-Level Antimalware SDK for Windows
Weakness CWE-426
Published April 7, 2020
Last update September 16, 2024

CVSS base score

6.3/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality Low
Integrity Low

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L

What the vulnerability does

01Description

Untrusted Search Path vulnerability in Bitdefender High-Level Antimalware SDK for Windows allows an attacker to load third party code from a DLL library in the search path. This issue affects: Bitdefender High-Level Antimalware SDK for Windows versions prior to 3.0.1.204 .

Key dates

02Disclosure timeline

April 7, 2020 CVE published
September 16, 2024 Record updated