Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
eset security vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2018-0649
Untrusted search path vulnerability in the installers of multiple Canon IT Solutions Inc. software programs (ESET Smart Security Premium, ESET Internet Security, ESET Smart Security, ESET NOD32 Antivirus, DESlock+ Pro, and CompuSec (all programs except packaged ones)) allows an m...
Eset Internet Security -
Eset Smart Security -
Eset Nod32 Antivirus -
Eset Deslock\\+ Pro -
Eset Smart Security Premium -
Eset Compusec -
9.3
CVSSv2
CVE-2008-5527
ESET Smart Security, when Internet Explorer 6 or 7 is used, allows remote malicious users to bypass detection of malware in an HTML document by placing an MZ header (aka "EXE info") at the beginning, and modifying the filename to have (1) no extension, (2) a .txt extens...
Eset Smart Security 3.0
7.8
CVSSv2
CVE-2022-0615
Use-after-free in eset_rtp kernel module used in ESET products for Linux allows potential malicious user to trigger denial-of-service condition on the system.
Eset Endpoint Antivirus
Eset Server Security
7.5
CVSSv2
CVE-2020-10180
The ESET AV parsing engine allows virus-detection bypass via a crafted BZ2 Checksum field in an archive. This affects versions prior to 1294 of Smart Security Premium, Internet Security, NOD32 Antivirus, Cyber Security Pro (macOS), Cyber Security (macOS), Mobile Security for Andr...
Eset Cyber Security
Eset Mobile Security
Eset Nod32 Antivirus 4
Eset Nod32 Antivirus
Eset Smart Security
Eset Smart Tv Security
7.5
CVSSv2
CVE-2016-0718
Expat allows context-dependent malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a malformed input document, which triggers a buffer overflow.
Mozilla Firefox
Apple Mac Os X
Suse Linux Enterprise Server 11
Suse Studio Onsite 1.3
Suse Linux Enterprise Software Development Kit 11
Suse Linux Enterprise Debuginfo 11
Opensuse Leap 42.1
Suse Linux Enterprise Software Development Kit 12
Suse Linux Enterprise Server 12
Suse Linux Enterprise Desktop 12
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
Libexpat Project Libexpat
Debian Debian Linux 8.0
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Mcafee Policy Auditor
Python Python
1 Article
7.2
CVSSv2
CVE-2021-37851
Local privilege escalation in Windows products of ESET allows user who is logged into the system to exploit repair feature of the installer to run malicious code with higher privileges. This issue affects: ESET, spol. s r.o. ESET NOD32 Antivirus 11.2 versions before 15.1.12.0. ES...
Eset Smart Security
Eset Internet Security
Eset Nod32 Antivirus
Eset Endpoint Antivirus
Eset Endpoint Security
Eset Security
Eset Server Security
Eset File Security
Eset Mail Security
7.2
CVSSv2
CVE-2021-37852
ESET products for Windows allows untrusted process to impersonate the client of a pipe, which can be leveraged by malicious user to escalate privileges in the context of NT AUTHORITY\SYSTEM.
Eset Mail Security
Eset Internet Security
Eset Endpoint Security
Eset Endpoint Antivirus
Eset File Security
Eset Nod32 Antivirus
Eset Security
Eset Server Security
Eset Server Security 8.0.12003.0
Eset Server Security 8.0.12003.1
Eset Smart Security
7.2
CVSSv2
CVE-2019-19792
A permissions issue in ESET Cyber Security prior to 6.8.300.0 for macOS allows a local malicious user to escalate privileges by appending data to root-owned files.
Eset Cyber Security
7.2
CVSSv2
CVE-2019-16519
ESET Cyber Security 6.7.900.0 for macOS allows a local malicious user to execute unauthorized commands as root by abusing an undocumented feature in scheduled tasks.
Eset Cyber Security
Eset Endpoint Antivirus
Eset Endpoint Security
7.2
CVSSv2
CVE-2008-7107
easdrv.sys in ESET Smart Security 3.0.667.0 allows local users to cause a denial of service (crash) via a crafted IOCTL 0x222003 request to the \\.\easdrv device interface.
Eset Smart Security 3.0.667.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »