Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
eset file security vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-0353
Local privilege escalation vulnerability potentially allowed an malicious user to misuse ESET’s file operations to delete files without having proper permission.
NA
CVE-2023-5594
Improper validation of the server’s certificate chain in secure traffic scanning feature considered intermediate certificate signed using the MD5 or SHA1 algorithm as trusted.
Eset Internet Security -
Eset Nod32 Antivirus -
Eset Smart Security -
Eset Mail Security -
Eset Security -
Eset Server Security -
Eset Server Security
Eset File Security -
Eset Endpoint Antivirus
Eset Endpoint Security -
Eset Endpoint Antivirus -
NA
CVE-2023-3160
The vulnerability potentially allows an malicious user to misuse ESET’s file operations during the module update to delete or move files without having proper permissions.
Eset Internet Security -
Eset Endpoint Security -
Eset Endpoint Antivirus -
Eset Smart Security -
Eset Mail Security -
Eset Nod32 -
Eset Security -
Eset Server Security -
7.2
CVSSv2
CVE-2021-37851
Local privilege escalation in Windows products of ESET allows user who is logged into the system to exploit repair feature of the installer to run malicious code with higher privileges. This issue affects: ESET, spol. s r.o. ESET NOD32 Antivirus 11.2 versions before 15.1.12.0. ES...
Eset Smart Security
Eset Internet Security
Eset Nod32 Antivirus
Eset Endpoint Antivirus
Eset Endpoint Security
Eset Security
Eset Server Security
Eset File Security
Eset Mail Security
3.6
CVSSv2
CVE-2022-27167
Privilege escalation vulnerability in Windows products of ESET, spol. s r.o. allows malicious user to exploit "Repair" and "Uninstall" features what may lead to arbitrary file deletion. This issue affects: ESET, spol. s r.o. ESET NOD32 Antivirus 11.2 versions ...
Eset Smart Security
Eset Internet Security
Eset Nod32 Antivirus
Eset Endpoint Antivirus
Eset Endpoint Security
Eset Security
Eset Mail Security
Eset Server Security
Eset File Security
7.2
CVSSv2
CVE-2021-37852
ESET products for Windows allows untrusted process to impersonate the client of a pipe, which can be leveraged by malicious user to escalate privileges in the context of NT AUTHORITY\SYSTEM.
Eset Mail Security
Eset Internet Security
Eset Endpoint Security
Eset Endpoint Antivirus
Eset File Security
Eset Nod32 Antivirus
Eset Security
Eset Server Security
Eset Server Security 8.0.12003.0
Eset Server Security 8.0.12003.1
Eset Smart Security
3.6
CVSSv2
CVE-2020-26941
A local (authenticated) low-privileged user can exploit a behavior in an ESET installer to achieve arbitrary file overwrite (deletion) of any file via a symlink, due to insecure permissions. The possibility of exploiting this vulnerability is limited and can only take place durin...
Eset Endpoint Antivirus
Eset Endpoint Security
Eset File Security
Eset Internet Security
Eset Internet Security 1294
Eset Mail Security
Eset Nod32 Antivirus
Eset Security
Eset Smart Security
4.6
CVSSv2
CVE-2020-11446
ESET Antivirus and Antispyware Module module 1553 through 1560 allows a user with limited access rights to create hard links in some ESET directories and then force the product to write through these links into files that would normally not be write-able by the user, thus achievi...
Eset Antivirus And Antispyware
Eset Endpoint Antivirus -
Eset Endpoint Security -
Eset File Security -
Eset Internet Security -
Eset Mail Security -
Eset Nod32 Antivirus -
Eset Smart Security -
7.5
CVSSv2
CVE-2016-0718
Expat allows context-dependent malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a malformed input document, which triggers a buffer overflow.
Mozilla Firefox
Apple Mac Os X
Suse Linux Enterprise Server 11
Suse Studio Onsite 1.3
Suse Linux Enterprise Software Development Kit 11
Suse Linux Enterprise Debuginfo 11
Opensuse Leap 42.1
Suse Linux Enterprise Software Development Kit 12
Suse Linux Enterprise Server 12
Suse Linux Enterprise Desktop 12
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
Libexpat Project Libexpat
Debian Debian Linux 8.0
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Mcafee Policy Auditor
Python Python
1 Article
4.3
CVSSv2
CVE-2012-1420
The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00, Command Antivirus 5.2.11.5, F-Prot Antivirus 4.6.2.117, Fortinet Antivirus 4.2.254.0, K7 AntiVirus 9.77.3565, Kaspersky Anti-Virus 7.0.0.125, Antimalware Engine 1.1.6402.0 in Microsoft Security Essentials 2.0, NOD32 Ant...
Cat Quick Heal 11.00
Authentium Command Antivirus 5.2.11.5
Pandasecurity Panda Antivirus 10.0.2.7
Rising-global Rising Antivirus 22.83.00.03
K7computing Antivirus 9.77.3565
Kaspersky Kaspersky Anti-virus 7.0.0.125
Microsoft Security Essentials 2.0
F-prot F-prot Antivirus 4.6.2.117
Fortinet Fortinet Antivirus 4.2.254.0
Eset Nod32 Antivirus 5795
Norman Norman Antivirus \\& Antispyware 6.06.12
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »