CVE-2020-8096 — MEDIUM (6.3)

Q: How severe is CVE-2020-8096?

CVE-2020-8096 has been rated MEDIUM with a CVSS base score of 6.3/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2020-8096?

Check the references section above for vendor advisories and patch information. Affected products include: Bitdefender Antimalware Software Development Kit.

Vulnerability Description

Untrusted Search Path vulnerability in Bitdefender High-Level Antimalware SDK for Windows allows an attacker to load third party code from a DLL library in the search path. This issue affects: Bitdefender High-Level Antimalware SDK for Windows versions prior to 3.0.1.204 .

CVSS Score

6.3

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality

LOW

Integrity

LOW

Availability

LOW

Affected Products

Vendor	Product	Versions
Bitdefender	Antimalware Software Development Kit	< 3.0.1.204

Related Weaknesses (CWE)

CWE-426

References

https://www.bitdefender.com/support/security-advisories/untrusted-search-path-vuVendor Advisory
https://www.bitdefender.com/support/security-advisories/untrusted-search-path-vuVendor Advisory

FAQ

What is CVE-2020-8096?

CVE-2020-8096 is a vulnerability with a CVSS score of 6.3 (MEDIUM). Untrusted Search Path vulnerability in Bitdefender High-Level Antimalware SDK for Windows allows an attacker to load third party code from a DLL library in the search path. This issue affects: Bitdefe...

How severe is CVE-2020-8096?

CVE-2020-8096 has been rated MEDIUM with a CVSS base score of 6.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-8096?

Check the references section above for vendor advisories and patch information. Affected products include: Bitdefender Antimalware Software Development Kit.