CVE-2020-8095

Description

A vulnerability in the improper handling of junctions before deletion in Bitdefender Total Security 2020 can allow an attacker to to trigger a denial of service on the affected device.

CVSS breakdown

CVSS 3.1

Attack Vector

Physical

Attack Complexity

Low

Privileges Required

Low

User Interaction

Required

Scope

Changed

Confidentiality

None

Integrity

None

Availability

High

Affected products

Bitdefender / Bitdefender Total Security 2020unspecified – 24.9

References

VENDOR_ADVISORYhttps://www.bitdefender.com/support/security-advisories/bitdefender-total-security-link-resolution-denial-service-vulnerability-va-4021
VENDOR_ADVISORYhttps://www.zerodayinitiative.com/advisories/ZDI-20-198/