Back

Insufficient Hardened Runtime or Library Validation signing in Bitdefender Virus Scanner for macOS

Publication date: January 13th, 2025

CVE ID:

CVE-2024-11128

CVSS scrore:

8.4 - CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:A/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N

Affected vendors:

Bitdefender

Affected products:

Virus Scanner

Vulnerability details:

A vulnerability in the BitdefenderVirusScanner binary as used in Bitdefender Virus Scanner for MacOS may allow .dynamic library injection (DYLD injection) without being blocked by AppleMobileFileIntegrity (AMFI). This issue is caused by the absence of Hardened Runtime or Library Validation signing. This issue affects Bitdefender Virus Scanner versions before 3.18.

Additional details:

An automatic update to version 3.18 fixes the issue.