Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Lack of validation on data read from guest memory in Bitdefender HVI (VA-9333)
Vulnerability Description
Lack of validation on data read from guest memory in IntPeGetDirectory, IntPeParseUnwindData, IntLogExceptionRecord, IntKsymExpandSymbol and IntLixTaskDumpTree may lead to out-of-bounds read or it could cause DoS due to integer-overflor (IntPeGetDirectory), TOCTOU (IntPeParseUnwindData) or insufficient validations.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
输入验证不恰当
Vulnerability Title
Bitdefender Hypervisor Introspection 输入验证错误漏洞
Vulnerability Description
Bitdefender Hypervisor Introspection是罗马尼亚Bitdefender公司的一个管理程序自省 (HVI) 安全解决方案.通过实时检测和阻止网络攻击,在业务敏感数据暴露之前对其进行保护. Bitdefender Hypervisor Introspection 存在输入验证错误漏洞,该漏洞源于缺乏验证数据读取客户内存,可能导致界外读或它可能导致由于integer-overflor DoS (IntPeGetDirectory) TOCTOU (IntPeParseUnwin
CVSS Information
N/A
Vulnerability Type
N/A