FortiClient Vulnerability

Bitdefender Endpoint Security Tools CVE-2021-3554 Access Control Bypass Vulnerability

Description

Improper Access Control vulnerability in the patchesUpdate API as implemented in Bitdefender Endpoint Security Tools for Linux as a relay role allows an attacker to manipulate the remote address used for pulling patches. This issue affects: Bitdefender Endpoint Security Tools versions prior to 7.1.2.33.

Affected Applications

Endpoint Security Tools

CVE References

CVE-2021-3554

Other References

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3554

ID	4106
Created	Jan 26, 2022
Description Updated	Nov 06, 2023
Risk
Coverage	FortiClient
OS	Windows
Vendor	Bitdefender
Patch	manual
Application	Endpoint Security Tools

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

FortiClient Vulnerability

Bitdefender Endpoint Security Tools CVE-2021-3554 Access Control Bypass Vulnerability

Description

Affected Applications

CVE References

Other References

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Threat Intelligence Center

Resource Center

About

FortiGuard Labs

Partners

FortiClient Vulnerability

Bitdefender Endpoint Security Tools CVE-2021-3554 Access Control Bypass Vulnerability

Description

Affected Applications

CVE References

Other References

Threat Intelligence
Center