CVE-2021-3641

Name of the Vulnerable Software and Affected Versions Bitdefender GravityZone versions 7.1.2.33 and prior versions

Description The issue is related to an Improper Link Resolution Before File Access ('Link Following') vulnerability in the EPAG component of Bitdefender Endpoint Security Tools for Windows. This allows a local attacker to cause a denial of service.

Recommendations For Bitdefender GravityZone versions 7.1.2.33 and prior versions, update to a version later than 7.1.2.33 to resolve the issue. As a temporary workaround, consider restricting access to the EPAG component until a patch is available.