Back

SSRF in GravityZone Console via DNS Truncation (VA-12634)

Publication date: April 4th, 2025


CVE ID:
CVE-2025-2243
CVSS scrore:
6.9 - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L
Affected vendors:
Bitdefender
Affected products:
GravityZone Console
Vulnerability details:

A server-side request forgery (SSRF) vulnerability in the Bitdefender GravityZone Console, when operating in Relay Mode, allows remote attackers to bypass input validation mechanisms by leveraging crafted DNS requests with leading special characters. This input validation bypass could be chained with other vulnerabilities to achieve arbitrary execution of third-party code.

Additional details:
An automatic update to version 6.41.2-1 fixes the issue.
Credit:
Nicolas Verdier (@n1nj4sec)