CVE-2021-3576
7.8 HIGHExecution with Unnecessary Privileges vulnerability in Bitdefender Endpoint Security Tools, Total Security allows a local attacker to ele...
Published: 2021-10-28 · Last updated: 2026-06-17
Severity and scoring
- CVSS
- 7.8 HIGH
- Vector
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- CWE
- CWE-250, CWE-269
Affected products
| Vendor | Product |
|---|---|
| bitdefender | endpoint_security_tools, total_security |
Description
Execution with Unnecessary Privileges vulnerability in Bitdefender Endpoint Security Tools, Total Security allows a local attacker to elevate to 'NT AUTHORITY\System. Impersonation enables the server thread to perform actions on behalf of the client but within the limits of the client's security context. This issue affects: Bitdefender Endpoint Security Tools versions prior to 7.2.1.65. Bitdefender Total Security versions prior to 25.0.26.
Source: NVD
References
- [NVD]https://nvd.nist.gov/vuln/detail/CVE-2021-3576
- [Vendor advisory]https://www.bitdefender.com/support/security-advisories/privilege-escalation-via-seimpersonateprivilege-in-bitdefender-endpoint-security-tools-va-9848/
- [Other]https://www.zerodayinitiative.com/advisories/ZDI-21-1276/
- [Other]https://www.zerodayinitiative.com/advisories/ZDI-21-1376/
- [Vendor advisory]https://www.bitdefender.com/support/security-advisories/privilege-escalation-via-seimpersonateprivilege-in-bitdefender-endpoint-security-tools-va-9848/
- [Other]https://www.zerodayinitiative.com/advisories/ZDI-21-1276/
- [Other]https://www.zerodayinitiative.com/advisories/ZDI-21-1376/
Related CVEs
Same vendor
- CVE-2026-10047 — The Bitdefender Napoca bare-metal hypervisor contains an out-of-bounds write vulnerability in the real-mode hook handler, implemented in ... (7.8 HIGH)
- CVE-2026-10046 — Bitdefender Napoca bare-metal hypervisor contains an out-of-bounds write vulnerability in the BIOS INT 0x15 / E820 memory map handler, im... (7.8 HIGH)
- CVE-2025-7073 — A local privilege escalation vulnerability in Bitdefender Total Security versions prior to 27.0.47.241 allows low-privileged attackers to... (7.8 HIGH)
- CVE-2021-3823 — Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in the UpdateServer component of Bitdefender... (7.1 HIGH)
- CVE-2021-3579 — Incorrect Default Permissions vulnerability in the bdservicehost.exe and Vulnerability.Scan.exe components as used in Bitdefender Endpoin... (7.8 HIGH)
Same CWE
- CVE-2024-38487 — api-gateway container running with root privilege would allow an attacker to escape the container and access host system to perform unint... (7.0 HIGH)
- CVE-2026-12313 — Information disclosure, sandbox escape in the Security: Process Sandboxing component (4.7 MEDIUM)
- CVE-2026-12289 — Privilege escalation in the Graphics: WebRender component (8.8 HIGH)
- CVE-2026-8176 — The LatePoint – Calendar Booking Plugin for Appointments and Events plugin for WordPress is vulnerable to Privilege Escalation to Adminis... (7.5 HIGH)
- CVE-2025-9912 — Nokia SR Linux is vulnerable to a local privilege escalation vulnerability (6.3 MEDIUM)