CVE-2023-6154

Name of the Vulnerable Software and Affected Versions Bitdefender Total Security version 27.0.25.114 Bitdefender Internet Security version 27.0.25.114 Bitdefender Antivirus Plus version 27.0.25.114 Bitdefender Antivirus Free version 27.0.25.114

Description A configuration setting issue in the seccenter.exe file used in Bitdefender products allows an attacker to change the product's expected behavior and potentially load a third-party library upon execution. This could enable the attacker to elevate privileges or execute arbitrary code by loading a specially crafted library.

Recommendations For Bitdefender Total Security version 27.0.25.114, update to a newer version that contains a fix for this issue. For Bitdefender Internet Security version 27.0.25.114, update to a newer version that contains a fix for this issue. For Bitdefender Antivirus Plus version 27.0.25.114, update to a newer version that contains a fix for this issue. For Bitdefender Antivirus Free version 27.0.25.114, update to a newer version that contains a fix for this issue. As a temporary workaround, consider restricting access to the seccenter.exe file until a patch is available.