Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’) vulnerability in the UpdateServer component of Bitdefender GravityZone allows an attacker to execute arbitrary code on vulnerable instances. This issue affects the following products that include the vulnerable component: 
Bitdefender Endpoint Security for Linux version 7.0.5.200089
Bitdefender Endpoint Security for  Windows version 7.9.9.380
GravityZone Control Center (On Premises) version 6.36.1
                
            Metrics
Affected Vendors & Products
References
        History
                    Fri, 07 Feb 2025 19:15:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| First Time appeared | Bitdefender Bitdefender endpoint Security Bitdefender gravityzone Control Center | |
| CPEs | cpe:2.3:a:bitdefender:endpoint_security:7.0.5.200089:*:*:*:*:linux:*:* cpe:2.3:a:bitdefender:endpoint_security:7.9.9.380:*:*:*:*:windows:*:* cpe:2.3:a:bitdefender:gravityzone_control_center:6.36.1:*:*:*:on_premises:*:*:* | |
| Vendors & Products | Bitdefender Bitdefender endpoint Security Bitdefender gravityzone Control Center | 
 MITRE
                        MITRE
                    Status: PUBLISHED
Assigner: Bitdefender
Published: 2024-04-09T13:01:47.416Z
Updated: 2024-08-01T19:03:39.266Z
Reserved: 2024-03-06T14:44:03.507Z
Link: CVE-2024-2224
 Vulnrichment
                        Vulnrichment
                    Updated: 2024-08-01T19:03:39.266Z
 NVD
                        NVD
                    Status : Analyzed
Published: 2024-04-09T13:15:33.357
Modified: 2025-02-07T18:53:18.953
Link: CVE-2024-2224
 Redhat
                        Redhat
                    No data.