{"cve":{"cve_id":"CVE-2021-3576","is_kev":false,"kev_date_added":null,"kev_vendor_project":null,"kev_product":null,"kev_vulnerability_name":null,"kev_short_description":null,"kev_required_action":null,"kev_due_date":null,"kev_known_ransomware":null,"kev_notes":null,"kev_cwes":null,"epss_score":0.00942,"epss_percentile":0.56341,"epss_as_of":"2026-06-23","description":"Execution with Unnecessary Privileges vulnerability in Bitdefender Endpoint Security Tools, Total Security allows a local attacker to elevate to 'NT AUTHORITY\\System. Impersonation enables the server thread to perform actions on behalf of the client but within the limits of the client's security context. This issue affects: Bitdefender Endpoint Security Tools versions prior to 7.2.1.65. Bitdefender Total Security versions prior to 25.0.26.","published_at":"2021-10-28T13:50:23.098000Z","last_modified_at":null,"cvss_v3_score":7.8,"cvss_v3_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss_v3_severity":"HIGH","cvss_v4_score":null,"cvss_v4_vector":null,"cvss_v4_severity":null,"ssvc_decision":null,"ssvc_exploitation":null,"ssvc_automatable":null,"ssvc_technical_impact":null,"cwes":["CWE-250"],"nvd_references":["https://www.bitdefender.com/support/security-advisories/privilege-escalation-via-seimpersonateprivilege-in-bitdefender-endpoint-security-tools-va-9848/","https://www.zerodayinitiative.com/advisories/ZDI-21-1276/","https://www.zerodayinitiative.com/advisories/ZDI-21-1376/"],"vuln_status":null,"trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-24T00:09:39.878444Z","updated_at":"2026-06-28T23:15:51.616068Z"},"effective_severity":"HIGH","badges":[],"impact_analysis":[],"cvss_v3_decoded":{"version":"3.1","metrics":[{"metric":"AV","name":"Attack Vector","value":"L","value_label":"Local"},{"metric":"AC","name":"Attack Complexity","value":"L","value_label":"Low"},{"metric":"PR","name":"Privileges Required","value":"L","value_label":"Low"},{"metric":"UI","name":"User Interaction","value":"N","value_label":"None"},{"metric":"S","name":"Scope","value":"U","value_label":"Unchanged"},{"metric":"C","name":"Confidentiality","value":"H","value_label":"High"},{"metric":"I","name":"Integrity","value":"H","value_label":"High"},{"metric":"A","name":"Availability","value":"H","value_label":"High"}]},"cvss_v4_decoded":{"version":null,"metrics":[]},"affected":[{"vendor_slug":"bitdefender","vendor_name":"Bitdefender","product_slug":"endpoint-security-tools","product_name":"Endpoint Security Tools","version_start":"unspecified","version_start_inclusive":true,"version_end":"7.2.1.65","version_end_inclusive":false,"cpe23_uri":"cve5:bitdefender:endpoint-security-tools:unspecified:7.2.1.65"},{"vendor_slug":"bitdefender","vendor_name":"Bitdefender","product_slug":"total-security","product_name":"Total Security","version_start":"unspecified","version_start_inclusive":true,"version_end":"25.0.26","version_end_inclusive":false,"cpe23_uri":"cve5:bitdefender:total-security:unspecified:25.0.26"}],"exploit_refs":[],"news":[],"references":[{"url":"https://www.bitdefender.com/support/security-advisories/privilege-escalation-via-seimpersonateprivilege-in-bitdefender-endpoint-security-tools-va-9848/","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"https://www.zerodayinitiative.com/advisories/ZDI-21-1276/","source_type":"VENDOR_ADVISORY","tags":["advisory"]},{"url":"https://www.zerodayinitiative.com/advisories/ZDI-21-1376/","source_type":"VENDOR_ADVISORY","tags":["advisory"]}],"timeline":[{"type":"published","at":"2021-10-28T13:50:23.098000Z","label":"CVE published","source":null},{"type":"cvss_changed","at":"2026-06-28T17:19:21.235572Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:19:21.235572Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:19:21.235572Z","label":"CVSS score revised","source":"cvelistv5"}]}