Untrusted Search Path vulnerability in Bitdefender Total Security 2020 (VA-5895)
Publication date: December 19th, 2019
5.2 - https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L
Bitdefender Total Security 2020
An Untrusted Search Path vulnerability in bdserviceshost.exe of Bitdefender Total Security 2020 allows an attacker to execute arbitrary code.
Automatic update to Bitdefender Total Security version 22.214.171.124 mitigates the issue
Trần Văn Khang (aka Khang Kì Tổ) — Infiniti Team, VinCSS (a member of Vingroup)