CVE-2020-8093

Code Injection into Bitdefender AV for Mac

CVSS 5.3 MEDIUMEPSS 0.4%CWE-264

A vulnerability in the AntivirusforMac binary as used in Bitdefender Antivirus for Mac allows an attacker to inject a library using DYLD environment variable to cause third-party code execution

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Affected products

Bitdefender · Bitdefender Antivirus for Mac

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.bitdefender.com/support/security-advisories/code-injection-into-bitdefender-antivirus-for-mac-va-3441/