As a valued member of the security industry, Bitdefender performs internal assessments on our products. In addition to our in-house research, Bitdefender also receives vulnerability advisories via Bug Bounty programs.

We believe in transparency and trust as much as we care for our customers' security. This is a complete list of published security advisories for vulnerabilities identified to date. You can also subscribe to our Security Advisory RSS Feed to keep abreast of security announcements.

CVE ID Published Title Product
CVE-2025-7073 December 10, 2025 Local Privilege Escalation via Arbitrary File Operation in Bitdefender ATC (VA-12590) Bitdefender Antivirus Free
CVE-2023-6154 April 1, 2024 Local privilege escalation in Bitdefender Total Security (VA-11168) Bitdefender Antivirus Free
CVE-2022-0357 May 24, 2023 Improper Quoting Path Issue in Bitdefender Total Security Bitdefender Antivirus Plus
CVE-2022-3369 November 1, 2022 Improper handling of registry symbolic links in Bitdefender Engines (VA-10562) Bitdefender Antivirus Free
CVE-2021-4199 March 7, 2022 Incorrect Permission Assignment for Critical Resource vulnerability in BDReinit.exe (VA-10017) Bitdefender Antivirus Plus
CVE-2021-4198 March 7, 2022 messaging_ipc.dll NULL Pointer Dereference in multiple Bitdefender products (VA-10016) Bitdefender Antivirus Plus
CVE-2020-8107 February 18, 2022 Process Control vulnerability in Bitdefender Antivirus Plus (VA-8709) Bitdefender Antivirus Plus
CVE-2020-15732 June 22, 2021 Improper Certificate Validation in Bitdefender Total Security (VA-8957) Bitdefender Antivirus Plus
CVE-2020-15733 December 14, 2020 URL Spoofing Vulnerability in Bitdefender SafePay (VA-8958) Bitdefender Antivirus Plus
1 2