CVE-2020-8096

Untrusted Search Path vulnerability in Bitdefender High-Level Antimalware SDK for Windows allows an attacker to load third party code from a DLL library in the search path. This issue affects: Bitdefender High-Level Antimalware SDK for Windows versions prior to 3.0.1.204 .

• CVE ID
• CVE-2020-8096

• Assigner
• cve-requests@bitdefender.com

• Vulnerability Status
• Analyzed

• Published Version
• 2020-04-07T08:15:12

• Last Modified Date
• 2020-04-07T16:53:22

• Version
• 2.0

• Vector String
• AV:L/AC:L/Au:N/C:P/I:P/A:P

• Access Vector
• LOCAL

• Access Compatibility
• LOW

• Authentication
• NONE

• Confidentiality Impact
• PARTIAL

• Integrity Impact
• PARTIAL

• Availability Impact
• PARTIAL

• Base Score
• 4.6

• Severity
• MEDIUM

• Exploitability Score
• 3.9

• Impact Score
• 6.4

• Version
• 3.1

• Vector String
• CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

• Attack Vector
• LOCAL

• Attack Compatibility
• LOW

• Privileges Required
• LOW

• User Interaction
• NONE

• Scope
• UNCHANGED

• Confidentiality Impact
• LOW

• Availability Impact
• LOW

• Base Score
• 5.3

• Base Severity
• MEDIUM

• Exploitability Score
• 1.8

• Impact Score
• 3.4