cvedb.io
CVE-2021-3579
HIGH · CVSS 7.8
EPSS exploitation probability: 0%
Published 2021-10-28T14:15:08.673 · Last modified 2026-06-17T04:05:22.743

Summary

Incorrect Default Permissions vulnerability in the bdservicehost.exe and Vulnerability.Scan.exe components as used in Bitdefender Endpoint Security Tools for Windows, Total Security allows a local attacker to elevate privileges to NT AUTHORITY\SYSTEM This issue affects: Bitdefender Endpoint Security Tools for Windows versions prior to 7.2.1.65. Bitdefender Total Security versions prior to 7.2.1.65.

Affected products

bitdefender — endpoint_security_tools

Does this affect you?

Add your gear to cvedb and we'll alert you only when bitdefender ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.