| CVE ID | |
| CVSS SCORE | 6.9, AV:L/AC:M/Au:N/C:C/I:C/A:C |
| AFFECTED VENDORS |
Bitdefender |
| AFFECTED PRODUCTS |
Antivirus Plus |
| VULNERABILITY DETAILS |
The specific flaw exists within the processing of IOCTL 0x002222f4 by the avc3 kernel driver. The issue lies in the failure to validate a user-supplied value prior to dereferencing it as a pointer. An attacker can leverage this vulnerability to execute arbitrary code under the context of kernel. |
| ADDITIONAL DETAILS |
Bitdefender has issued an update to correct this vulnerability. More details can be found at:
http://www.bitdefender.com/site/view/bug-bounty-hall-of-fame.html |
| DISCLOSURE TIMELINE |
|
| CREDIT | bear13oy of CloverSec Labs |
