Kindly be advised we cannot cancel subscriptions or issue refunds on the forum.
You may cancel your Bitdefender subscription from Bitdefender Central or by contacting Customer Support at: https://www.bitdefender.com/consumer/support/help/

Thank you for your understanding.

Why does Bitdefender give vague-to-useless messages regarding vulnerabilities?

Options
JoeBD
JoeBD
in Security Research Team

I have Netgear Armor powered by Bitdefender. The Armor Security Vulnerabilities reports four different vulnerabilities, including "Device lock-out vulnerability," "Device memory corruption vulnerability," "Device memory overload vulnerability," and "Miscellaneous vulnerability."

My Synology NAS is on Version: DSM 7.2-64570 Update 3.

These useless warnings provide no insight into correcting the reported vulnerabilities. No CVE numbers are mentioned in the messages (see the attached images.) I could report something to Synology, but you've given us nothing to report. Why?

IMG_4120.jpg
IMG_4119.jpg

If Bitdefender is smart enough to identify such risks, it should be able to provide more details regarding their correction.

Side question, is Armor's Bitdefender smart enough to clear out such warnings once the perceived risk is mitigated?

Best Answer

  • Flexx
    Flexx DEFENDER OF THE YEAR 2023 / DEFENDER OF THE MONTH ✭✭✭✭✭ mod
    edited August 2023 Answer ✓
    Options
    https://community.bitdefender.com/en/discussion/96827/why-does-bitdefender-give-vague-to-useless-messages-regarding-vulnerabilities

    The lack of information about the vulnerabilities reported by Netgear Armor is indeed concerning. It makes it difficult to know what the risks are and how to mitigate them.

    I can't speak for Netgear Armor or Bitdefender, but I can speculate on why they might not be providing more information. One possibility is that they are still investigating the vulnerabilities and don't have all the details yet. Another possibility is that they are trying to protect their customers from being exploited by attackers who know more about the vulnerabilities than they do.

    I would recommend that you contact Netgear Armor (https://my.netgear.com/support/contact.aspx) and Bitdefender directly (https://www.bitdefender.com/consumer/support/get-help-netgear/) and ask for more information about the vulnerabilities. You can also report the vulnerabilities to Synology, as you mentioned.

    In the meantime, you can take some general steps to protect your Synology NAS, such as:

    1) Make sure you have the latest firmware installed.

    2) Use strong passwords for your NAS and all of your devices.

    3) Enable two-factor authentication.

    4) Install a firewall on your router.

    Regards

    Life happens, Coffee helps!

    Show your Attitude, when you reach that Altitude!

    Bitdefender Ultimate Security Plus (user)

Answers

  • JoeBD
    JoeBD
    Options

    Flexx,

    Thanks for your reply. I will contact Bitdefender Support. Netgear Armor Support told me (paraphrasing) we don't support Armor; we just sell it.

    I do appreciate your other recommendations.

    Cheers,

    Joe

All Time Leaders

Categories

Defenders of the month