CVE-2024-2223 - Vulnerability Details - OpenCVE

An Incorrect Regular Expression vulnerability in Bitdefender GravityZone Update Server allows an attacker to cause a Server Side Request Forgery and reconfigure the relay. This issue affects the following products that include the vulnerable component:

Bitdefender Endpoint Security for Linux version 7.0.5.200089
Bitdefender Endpoint Security for Windows version 7.9.9.380
GravityZone Control Center (On Premises) version 6.36.1

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00496.

Key SSVC decision points have not yet been added.

Vendors	Products
Bitdefender	Endpoint Security Gravityzone Control Center

Configuration 1 [-]

OR	cpe:2.3:a:bitdefender:endpoint_security:7.0.5.200089:::::linux::
	cpe:2.3:a:bitdefender:endpoint_security:7.9.9.380:::::windows::
	cpe:2.3:a:bitdefender:gravityzone_control_center:6.36.1::::on_premises:::

No data.

No data.

References

Link	Providers
https://www.bitdefender.com/support/security-advisories/incorrect-regular-expression-in-gravityzone-update-server-va-11465/

History

Fri, 07 Feb 2025 19:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Bitdefender Bitdefender endpoint Security Bitdefender gravityzone Control Center
Weaknesses		CWE-697
CPEs		cpe:2.3:a:bitdefender:endpoint_security:7.0.5.200089:::::linux:: cpe:2.3:a:bitdefender:endpoint_security:7.9.9.380:::::windows:: cpe:2.3:a:bitdefender:gravityzone_control_center:6.36.1::::on_premises:::
Vendors & Products		Bitdefender Bitdefender endpoint Security Bitdefender gravityzone Control Center

MITRE

Status: PUBLISHED

Assigner: Bitdefender

Published: 2024-04-09T13:01:34.716Z

Updated: 2024-08-12T17:59:36.379Z

Reserved: 2024-03-06T14:44:01.368Z

Link: CVE-2024-2223

Vulnrichment

Updated: 2024-08-01T19:03:39.042Z

NVD

Status : Analyzed

Published: 2024-04-09T13:15:33.057

Modified: 2025-02-07T19:00:24.650

Link: CVE-2024-2223

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-2223", "assignerOrgId": "b3d5ebe7-963e-41fb-98e1-2edaeabb8f82", "state": "PUBLISHED", "assignerShortName": "Bitdefender", "dateReserved": "2024-03-06T14:44:01.368Z", "datePublished": "2024-04-09T13:01:34.716Z", "dateUpdated": "2024-08-12T17:59:36.379Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "affected", "product": "GravityZone Control Center (On Premises)", "vendor": "Bitdefender", "versions": [{"status": "affected", "version": "6.36.1"}]}, {"defaultStatus": "unaffected", "product": "Endpoint Security for Windows", "vendor": "Bitdefender", "versions": [{"status": "affected", "version": "7.9.9.380"}]}, {"defaultStatus": "unaffected", "product": "Endpoint Security for Linux", "vendor": "Bitdefender", "versions": [{"status": "affected", "version": "7.0.5.200089"}]}], "credits": [{"lang": "en", "type": "finder", "value": "Nicolas VERDIER -- n1nj4sec"}], "datePublic": "2024-04-09T09:00:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">An Incorrect Regular Expression vulnerability in Bitdefender GravityZone Update Server allows an attacker to cause a Server Side Request Forgery and reconfigure the relay. This issue affects the following products that include the vulnerable component: <br><br>Bitdefender Endpoint Security for Linux version 7.0.5.200089<br>Bitdefender Endpoint Security for  Windows version 7.9.9.380<br>GravityZone Control Center (On Premises) version 6.36.1<br></span>"}], "value": "An Incorrect Regular Expression vulnerability in Bitdefender GravityZone Update Server allows an attacker to cause a Server Side Request Forgery and reconfigure the relay. This issue affects the following products that include the vulnerable component:\u00a0\n\nBitdefender Endpoint Security for Linux version 7.0.5.200089\nBitdefender Endpoint Security for\u00a0 Windows version 7.9.9.380\nGravityZone Control Center (On Premises) version 6.36.1\n"}], "impacts": [{"capecId": "CAPEC-664", "descriptions": [{"lang": "en", "value": "CAPEC-664: Server Side Request Forgery"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-185", "description": "CWE-185: Incorrect Regular Expression", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "b3d5ebe7-963e-41fb-98e1-2edaeabb8f82", "shortName": "Bitdefender", "dateUpdated": "2024-04-09T13:01:34.716Z"}, "references": [{"url": "https://www.bitdefender.com/support/security-advisories/incorrect-regular-expression-in-gravityzone-update-server-va-11465/"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "An automatic update to the following versions fixes the issues:<br><br>Bitdefender Endpoint Security for Linux version 7.0.5.200090<br>Bitdefender Endpoint Security for Windows version 7.9.9.381<br>GravityZone Control Center (On Premises) version 6.36.1-1<br>"}], "value": "An automatic update to the following versions fixes the issues:\n\nBitdefender Endpoint Security for Linux version 7.0.5.200090\nBitdefender Endpoint Security for Windows version 7.9.9.381\nGravityZone Control Center (On Premises) version 6.36.1-1\n"}], "source": {"discovery": "EXTERNAL"}, "title": " Incorrect Regular Expression in GravityZone Update Server (VA-11465)", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T19:03:39.042Z"}, "title": "CVE Program Container", "references": [{"url": "https://www.bitdefender.com/support/security-advisories/incorrect-regular-expression-in-gravityzone-update-server-va-11465/", "tags": ["x_transferred"]}]}, {"affected": [{"vendor": "bitdefender", "product": "gravityzone", "cpes": ["cpe:2.3:a:bitdefender:gravityzone:6.36.1:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "6.36.1", "status": "affected"}]}, {"vendor": "bitdefender", "product": "endpoint_security_for_windows", "cpes": ["cpe:2.3:a:bitdefender:endpoint_security_for_windows:7.9.9.380:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "7.9.9.380", "status": "affected"}]}, {"vendor": "bitdefender", "product": "endpoint_security_for_linux", "cpes": ["cpe:2.3:a:bitdefender:endpoint_security_for_linux:7.0.5.200089:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "7.0.5.200089", "status": "affected"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-08-12T15:13:14.948905Z", "id": "CVE-2024-2223", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-12T17:59:36.379Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://www.bitdefender.com/support/security-advisories/incorrect-regular-expression-in-gravityzone-update-server-va-11465/", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T19:03:39.042Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-2223", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-08-12T15:13:14.948905Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:bitdefender:gravityzone:6.36.1:*:*:*:*:*:*:*"], "vendor": "bitdefender", "product": "gravityzone", "versions": [{"status": "affected", "version": "6.36.1"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:bitdefender:endpoint_security_for_windows:7.9.9.380:*:*:*:*:*:*:*"], "vendor": "bitdefender", "product": "endpoint_security_for_windows", "versions": [{"status": "affected", "version": "7.9.9.380"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:bitdefender:endpoint_security_for_linux:7.0.5.200089:*:*:*:*:*:*:*"], "vendor": "bitdefender", "product": "endpoint_security_for_linux", "versions": [{"status": "affected", "version": "7.0.5.200089"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-12T17:59:26.043Z"}}], "cna": {"title": " Incorrect Regular Expression in GravityZone Update Server (VA-11465)", "source": {"discovery": "EXTERNAL"}, "credits": [{"lang": "en", "type": "finder", "value": "Nicolas VERDIER -- n1nj4sec"}], "impacts": [{"capecId": "CAPEC-664", "descriptions": [{"lang": "en", "value": "CAPEC-664: Server Side Request Forgery"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.1, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Bitdefender", "product": "GravityZone Control Center (On Premises)", "versions": [{"status": "affected", "version": "6.36.1"}], "defaultStatus": "affected"}, {"vendor": "Bitdefender", "product": "Endpoint Security for Windows", "versions": [{"status": "affected", "version": "7.9.9.380"}], "defaultStatus": "unaffected"}, {"vendor": "Bitdefender", "product": "Endpoint Security for Linux", "versions": [{"status": "affected", "version": "7.0.5.200089"}], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "An automatic update to the following versions fixes the issues:\n\nBitdefender Endpoint Security for Linux version 7.0.5.200090\nBitdefender Endpoint Security for Windows version 7.9.9.381\nGravityZone Control Center (On Premises) version 6.36.1-1\n", "supportingMedia": [{"type": "text/html", "value": "An automatic update to the following versions fixes the issues:<br><br>Bitdefender Endpoint Security for Linux version 7.0.5.200090<br>Bitdefender Endpoint Security for Windows version 7.9.9.381<br>GravityZone Control Center (On Premises) version 6.36.1-1<br>", "base64": false}]}], "datePublic": "2024-04-09T09:00:00.000Z", "references": [{"url": "https://www.bitdefender.com/support/security-advisories/incorrect-regular-expression-in-gravityzone-update-server-va-11465/"}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "descriptions": [{"lang": "en", "value": "An Incorrect Regular Expression vulnerability in Bitdefender GravityZone Update Server allows an attacker to cause a Server Side Request Forgery and reconfigure the relay. This issue affects the following products that include the vulnerable component:\u00a0\n\nBitdefender Endpoint Security for Linux version 7.0.5.200089\nBitdefender Endpoint Security for\u00a0 Windows version 7.9.9.380\nGravityZone Control Center (On Premises) version 6.36.1\n", "supportingMedia": [{"type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">An Incorrect Regular Expression vulnerability in Bitdefender GravityZone Update Server allows an attacker to cause a Server Side Request Forgery and reconfigure the relay. This issue affects the following products that include the vulnerable component: <br><br>Bitdefender Endpoint Security for Linux version 7.0.5.200089<br>Bitdefender Endpoint Security for  Windows version 7.9.9.380<br>GravityZone Control Center (On Premises) version 6.36.1<br></span>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-185", "description": "CWE-185: Incorrect Regular Expression"}]}], "providerMetadata": {"orgId": "b3d5ebe7-963e-41fb-98e1-2edaeabb8f82", "shortName": "Bitdefender", "dateUpdated": "2024-04-09T13:01:34.716Z"}}}, "cveMetadata": {"cveId": "CVE-2024-2223", "state": "PUBLISHED", "dateUpdated": "2024-08-12T17:59:36.379Z", "dateReserved": "2024-03-06T14:44:01.368Z", "assignerOrgId": "b3d5ebe7-963e-41fb-98e1-2edaeabb8f82", "datePublished": "2024-04-09T13:01:34.716Z", "assignerShortName": "Bitdefender"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:bitdefender:endpoint_security:7.0.5.200089:*:*:*:*:linux:*:*", "matchCriteriaId": "AAB89966-3C21-4B7D-AC06-852112583783", "vulnerable": true}, {"criteria": "cpe:2.3:a:bitdefender:endpoint_security:7.9.9.380:*:*:*:*:windows:*:*", "matchCriteriaId": "D1F56724-5FFE-414B-95D1-96351A0F9686", "vulnerable": true}, {"criteria": "cpe:2.3:a:bitdefender:gravityzone_control_center:6.36.1:*:*:*:on_premises:*:*:*", "matchCriteriaId": "75899627-A80E-49B6-9EBA-433DF7F2BE37", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "An Incorrect Regular Expression vulnerability in Bitdefender GravityZone Update Server allows an attacker to cause a Server Side Request Forgery and reconfigure the relay. This issue affects the following products that include the vulnerable component:\u00a0\n\nBitdefender Endpoint Security for Linux version 7.0.5.200089\nBitdefender Endpoint Security for\u00a0 Windows version 7.9.9.380\nGravityZone Control Center (On Premises) version 6.36.1\n"}, {"lang": "es", "value": "Una vulnerabilidad de expresi\u00f3n regular incorrecta en Bitdefender GravityZone Update Server permite a un atacante provocar Server Side Request Forgery y reconfigurar el rel\u00e9. Este problema afecta a los siguientes productos que incluyen el componente vulnerable: Bitdefender Endpoint Security para Linux versi\u00f3n 7.0.5.200089 Bitdefender Endpoint Security para Windows versi\u00f3n 7.9.9.380 GravityZone Control Center (On Premises) versi\u00f3n 6.36.1"}], "id": "CVE-2024-2223", "lastModified": "2025-02-07T19:00:24.650", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.2, "impactScore": 5.9, "source": "cve-requests@bitdefender.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2024-04-09T13:15:33.057", "references": [{"source": "cve-requests@bitdefender.com", "tags": ["Vendor Advisory"], "url": "https://www.bitdefender.com/support/security-advisories/incorrect-regular-expression-in-gravityzone-update-server-va-11465/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://www.bitdefender.com/support/security-advisories/incorrect-regular-expression-in-gravityzone-update-server-va-11465/"}], "sourceIdentifier": "cve-requests@bitdefender.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-185"}], "source": "cve-requests@bitdefender.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-697"}], "source": "nvd@nist.gov", "type": "Primary"}]}