CVE-2020-15279

Severity CVSS v4.0:
Pending analysis
Type:
CWE-284 Improper Access Control
Publication date:
18/05/2021
Last modified:
17/06/2026

Description

An Improper Access Control vulnerability in the logging component of Bitdefender Endpoint Security Tools for Windows versions prior to 6.6.23.320 allows a regular user to learn the scanning exclusion paths. This issue was discovered during external security research.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:bitdefender:endpoint_security_tools:*:*:*:*:*:windows:*:* 6.6.23.320 (excluding)