Vulnerability Description
A local privilege escalation vulnerability in Bitdefender Total Security versions prior to 27.0.47.241 allows low-privileged attackers to elevate privileges. The issue arises from bdservicehost.exe deleting files from a user-writable directory (C:\ProgramData\Atc\Feedback) without proper symbolic link validation, enabling arbitrary file deletion. This issue is chained with a file copy operation during network events and a filter driver bypass via DLL injection to achieve arbitrary file copy and code execution as elevated user.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitdefender | Antivirus | < 30.0.25.77 |
| Bitdefender | Antivirus Plus | < 27.0.47.241 |
| Bitdefender | Endpoint Security Tools | < 7.9.20.515 |
| Bitdefender | Internet Security | < 27.0.47.241 |
| Bitdefender | Total Security | < 27.0.47.241 |
Related Weaknesses (CWE)
References
FAQ
What is CVE-2025-7073?
CVE-2025-7073 is a vulnerability with a CVSS score of 7.8 (HIGH). A local privilege escalation vulnerability in Bitdefender Total Security versions prior to 27.0.47.241 allows low-privileged attackers to elevate privileges. The issue arises from bdservicehost.exe de...
How severe is CVE-2025-7073?
CVE-2025-7073 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-7073?
Check the references section above for vendor advisories and patch information. Affected products include: Bitdefender Antivirus, Bitdefender Antivirus Plus, Bitdefender Endpoint Security Tools, Bitdefender Internet Security, Bitdefender Total Security.