PT-2026-7413 · Microsoft · Bitdefender For Linux

Michal Kamensky

Publicado

2026-02-10

Atualizado

2026-02-11

CVE-2026-21537

CVSS v3.1

8.8

Alta

Vetor

AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Microsoft Defender for Linux (affected versions not specified)

Description The software contains a flaw in how it generates code, potentially allowing an attacker on the same network to run code without authorization. There is no information about the number of potentially affected devices or any real-world incidents where this issue was exploited. The issue involves improper control of code generation, also known as 'code injection'.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Code Injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-94

Identificadores relacionados

BDU:2026-01790

CVE-2026-21537

Produtos afetados

Bitdefender For Linux

PT-2026-7413 · Microsoft · Bitdefender For Linux

CVE-2026-21537

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4