BitDefender security solutions are designed to keep an organization safe from attackers. But what will you do when the same software becomes a threat vector for the attackers exploiting your data? In such cases, you cannot trust any handy tools. It was found that the Bitdefender Total Security 2020 has the Safepay browser component with the Improper Input Validation vulnerability. It allows a specially crafted webpage to run commands remotely in the Safepay Utility process. Due to Bitdefender fixes bug, the Bitdefender Total Security 2020 versions prior to the 18.104.22.168 updates are considered vulnerable to threats.