CVE-2018-18060

Name of the Vulnerable Software and Affected Versions Bitdefender Engines versions prior to 7.76808

Description A lack of proper validation of user-supplied data in the dalvik.xmd parser can result in a read past the end of an allocated buffer. This issue can be exploited to cause denial-of-service when paired with other vulnerabilities. User interaction is required, where the target must visit a malicious page or open a malicious file.

Recommendations For versions prior to 7.76808, update to version 7.76808 or later to resolve the issue. As a temporary workaround, consider restricting access to potentially malicious pages or files to minimize the risk of exploitation.