An Incorrect Regular Expression vulnerability in Bitdefender GravityZone Update Server allows an attacker to cause a Server Side Request Forgery and reconfigure the relay. This issue affects the following products that include the vulnerable component:
Bitdefender Endpoint Security for Linux version 7.0.5.200089
Bitdefender Endpoint Security for Windows version 7.9.9.380
GravityZone Control Center (On Premises) version 6.36.1
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Bitdefender
Published: 2024-04-09T13:01:34.716Z
Updated: 2024-04-09T13:01:34.716Z
Reserved: 2024-03-06T14:44:01.368Z
Link: CVE-2024-2223
JSON object: View
NVD Information
Status : Awaiting Analysis
Published: 2024-04-09T13:15:33.057
Modified: 2024-04-10T13:24:22.187
Link: CVE-2024-2223
JSON object: View
Redhat Information
No data.
CWE