{"cve":{"cve_id":"CVE-2023-6154","is_kev":false,"kev_date_added":null,"kev_vendor_project":null,"kev_product":null,"kev_vulnerability_name":null,"kev_short_description":null,"kev_required_action":null,"kev_due_date":null,"kev_known_ransomware":null,"kev_notes":null,"kev_cwes":null,"epss_score":0.002,"epss_percentile":0.09797,"epss_as_of":"2026-06-23","description":"A configuration setting issue in seccenter.exe as used in Bitdefender Total Security, Bitdefender Internet Security, Bitdefender Antivirus Plus, Bitdefender Antivirus Free allows an attacker to change the product's expected behavior and potentially load a third-party library upon execution. This issue affects Total Security: 27.0.25.114; Internet Security: 27.0.25.114; Antivirus Plus: 27.0.25.114; Antivirus Free: 27.0.25.114.","published_at":"2024-04-01T10:06:57.864000Z","last_modified_at":null,"cvss_v3_score":7.8,"cvss_v3_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss_v3_severity":"HIGH","cvss_v4_score":null,"cvss_v4_vector":null,"cvss_v4_severity":null,"ssvc_decision":null,"ssvc_exploitation":"none","ssvc_automatable":false,"ssvc_technical_impact":"total","cwes":["CWE-15"],"nvd_references":["https://bitdefender.com/support/security-advisories/local-privilege-escalation-in-bitdefender-total-security-va-11168/"],"vuln_status":null,"trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-24T00:09:39.878444Z","updated_at":"2026-06-29T01:44:39.184534Z"},"effective_severity":"HIGH","badges":[],"impact_analysis":[],"cvss_v3_decoded":{"version":"3.1","metrics":[{"metric":"AV","name":"Attack Vector","value":"L","value_label":"Local"},{"metric":"AC","name":"Attack Complexity","value":"L","value_label":"Low"},{"metric":"PR","name":"Privileges Required","value":"L","value_label":"Low"},{"metric":"UI","name":"User Interaction","value":"N","value_label":"None"},{"metric":"S","name":"Scope","value":"U","value_label":"Unchanged"},{"metric":"C","name":"Confidentiality","value":"H","value_label":"High"},{"metric":"I","name":"Integrity","value":"H","value_label":"High"},{"metric":"A","name":"Availability","value":"H","value_label":"High"}]},"cvss_v4_decoded":{"version":null,"metrics":[]},"affected":[{"vendor_slug":"bitdefender","vendor_name":"Bitdefender","product_slug":"antivirus-free","product_name":"Antivirus Free","version_start":"27.0.25.114","version_start_inclusive":true,"version_end":"27.0.25.114","version_end_inclusive":true,"cpe23_uri":"cve5:bitdefender:antivirus-free:27.0.25.114:27.0.25.114"},{"vendor_slug":"bitdefender","vendor_name":"Bitdefender","product_slug":"antivirus-plus","product_name":"Antivirus Plus","version_start":"27.0.25.114","version_start_inclusive":true,"version_end":"27.0.25.114","version_end_inclusive":true,"cpe23_uri":"cve5:bitdefender:antivirus-plus:27.0.25.114:27.0.25.114"},{"vendor_slug":"bitdefender","vendor_name":"Bitdefender","product_slug":"internet-security","product_name":"Internet Security","version_start":"27.0.25.114","version_start_inclusive":true,"version_end":"27.0.25.114","version_end_inclusive":true,"cpe23_uri":"cve5:bitdefender:internet-security:27.0.25.114:27.0.25.114"},{"vendor_slug":"bitdefender","vendor_name":"Bitdefender","product_slug":"total-security","product_name":"Total Security","version_start":"27.0.25.114","version_start_inclusive":true,"version_end":"27.0.25.114","version_end_inclusive":true,"cpe23_uri":"cve5:bitdefender:total-security:27.0.25.114:27.0.25.114"}],"exploit_refs":[],"news":[],"references":[{"url":"https://bitdefender.com/support/security-advisories/local-privilege-escalation-in-bitdefender-total-security-va-11168/","source_type":"VENDOR_ADVISORY","tags":["advisory"]}],"timeline":[{"type":"published","at":"2024-04-01T10:06:57.864000Z","label":"CVE published","source":null},{"type":"cvss_changed","at":"2026-06-28T17:31:53.593321Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:31:53.593321Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:31:53.593321Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"ssvc_changed","at":"2026-06-29T01:44:39.184534Z","label":"SSVC decision revised","source":"vulnrichment"},{"type":"ssvc_changed","at":"2026-06-29T01:44:39.184534Z","label":"SSVC decision revised","source":"vulnrichment"},{"type":"ssvc_changed","at":"2026-06-29T01:44:39.184534Z","label":"SSVC decision revised","source":"vulnrichment"}]}