Browse all 73 CVE security advisories affecting Bitdefender. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Bitdefender operates primarily as a cybersecurity firm specializing in endpoint protection, antivirus software, and threat intelligence services for both consumer and enterprise markets. Its extensive product portfolio, including antivirus engines and security suites, has historically been associated with various vulnerability classes, notably remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws within its desktop applications and web interfaces. With 73 CVEs currently on record, these issues often stem from improper input validation, insecure default configurations, or memory corruption errors in legacy components. While the company maintains a robust security posture through regular updates and a dedicated bug bounty program, past incidents highlight the complexity of securing comprehensive security platforms. These vulnerabilities typically require local access or specific user interactions to exploit, though some remote vectors have been identified, emphasizing the need for diligent patch management across its diverse software ecosystem.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-11128 | Insufficient Hardened Runtime or Library Validation signing in Bitdefender Virus Scanner for macOS — Virus ScannerCWE-269 | 7.8 | - | 2025-01-13 |
This page lists every published CVE security advisory associated with Bitdefender. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.