{"cve":{"cve_id":"CVE-2022-0357","is_kev":false,"kev_date_added":null,"kev_vendor_project":null,"kev_product":null,"kev_vulnerability_name":null,"kev_short_description":null,"kev_required_action":null,"kev_due_date":null,"kev_known_ransomware":null,"kev_notes":null,"kev_cwes":null,"epss_score":0.00188,"epss_percentile":0.08439,"epss_as_of":"2026-06-23","description":"Unquoted Search Path or Element vulnerability in the Vulnerability Scan component of Bitdefender Total Security, Bitdefender Internet Security, and Bitdefender Antivirus Plus allows an attacker to elevate privileges to SYSTEM.\n\nThis issue affects:\n\nBitdefender Total Security\nversions prior to 26.0.10.45.\nBitdefender Internet Security\nversions prior to 26.0.10.45.\nBitdefender Antivirus Plus\nversions prior to 26.0.10.45.","published_at":"2023-05-24T07:53:32.812000Z","last_modified_at":null,"cvss_v3_score":6.7,"cvss_v3_vector":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","cvss_v3_severity":"MEDIUM","cvss_v4_score":null,"cvss_v4_vector":null,"cvss_v4_severity":null,"ssvc_decision":null,"ssvc_exploitation":"none","ssvc_automatable":false,"ssvc_technical_impact":"total","cwes":["CWE-428"],"nvd_references":["https://www.bitdefender.com/support/security-advisories/improper-quoting-path-issue-in-bitdefender-total-security"],"vuln_status":null,"trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-24T00:09:39.878444Z","updated_at":"2026-06-28T23:16:41.155601Z"},"effective_severity":"MEDIUM","badges":[],"impact_analysis":[],"cvss_v3_decoded":{"version":"3.1","metrics":[{"metric":"AV","name":"Attack Vector","value":"L","value_label":"Local"},{"metric":"AC","name":"Attack Complexity","value":"L","value_label":"Low"},{"metric":"PR","name":"Privileges Required","value":"H","value_label":"High"},{"metric":"UI","name":"User Interaction","value":"N","value_label":"None"},{"metric":"S","name":"Scope","value":"U","value_label":"Unchanged"},{"metric":"C","name":"Confidentiality","value":"H","value_label":"High"},{"metric":"I","name":"Integrity","value":"H","value_label":"High"},{"metric":"A","name":"Availability","value":"H","value_label":"High"}]},"cvss_v4_decoded":{"version":null,"metrics":[]},"affected":[{"vendor_slug":"bitdefender","vendor_name":"Bitdefender","product_slug":"antivirus-plus","product_name":"Antivirus Plus","version_start":"26.0.10.45","version_start_inclusive":true,"version_end":"26.0.10.45","version_end_inclusive":true,"cpe23_uri":"cve5:bitdefender:antivirus-plus:26.0.10.45:26.0.10.45"},{"vendor_slug":"bitdefender","vendor_name":"Bitdefender","product_slug":"internet-security","product_name":"Internet Security","version_start":"26.0.10.45","version_start_inclusive":true,"version_end":"26.0.10.45","version_end_inclusive":true,"cpe23_uri":"cve5:bitdefender:internet-security:26.0.10.45:26.0.10.45"},{"vendor_slug":"bitdefender","vendor_name":"Bitdefender","product_slug":"total-security","product_name":"Total Security","version_start":"26.0.10.45","version_start_inclusive":true,"version_end":"26.0.10.45","version_end_inclusive":true,"cpe23_uri":"cve5:bitdefender:total-security:26.0.10.45:26.0.10.45"}],"exploit_refs":[],"news":[],"references":[{"url":"https://www.bitdefender.com/support/security-advisories/improper-quoting-path-issue-in-bitdefender-total-security","source_type":"VENDOR_ADVISORY","tags":["advisory"]}],"timeline":[{"type":"published","at":"2023-05-24T07:53:32.812000Z","label":"CVE published","source":null},{"type":"ssvc_changed","at":"2026-06-24T00:31:53.340304Z","label":"SSVC decision revised","source":"vulnrichment"},{"type":"ssvc_changed","at":"2026-06-24T00:31:53.340304Z","label":"SSVC decision revised","source":"vulnrichment"},{"type":"ssvc_changed","at":"2026-06-24T00:31:53.340304Z","label":"SSVC decision revised","source":"vulnrichment"},{"type":"cvss_changed","at":"2026-06-24T00:31:53.340304Z","label":"CVSS score revised","source":"vulnrichment"},{"type":"cvss_changed","at":"2026-06-24T00:31:53.340304Z","label":"CVSS score revised","source":"vulnrichment"},{"type":"cvss_changed","at":"2026-06-24T00:31:53.340304Z","label":"CVSS score revised","source":"vulnrichment"}]}