CVE-2022-0357 MEDIUM

CVE-2022-0357: Improper Quoting Path Issue in Bitdefender Total Security

Vendor Bitdefender
Product Total Security
Weakness CWE-428
Published May 24, 2023
Last update January 16, 2025
View on NVD All CVEs

CVSS base score

6.7/10
Attack vector Local
Attack complexity Low
Privileges required High
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

Unquoted Search Path or Element vulnerability in the Vulnerability Scan component of Bitdefender Total Security, Bitdefender Internet Security, and Bitdefender Antivirus Plus allows an attacker to elevate privileges to SYSTEM. This issue affects: Bitdefender Total Security versions prior to 26.0.10.45. Bitdefender Internet Security versions prior to 26.0.10.45. Bitdefender Antivirus Plus versions prior to 26.0.10.45.

Key dates

02Disclosure timeline

May 24, 2023 CVE published
January 16, 2025 Record updated