Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
eset endpoint antivirus vulnerabilities and exploits
(subscribe to this query)
8.6
CVSSv3
CVE-2023-5594
Improper validation of the server’s certificate chain in secure traffic scanning feature considered intermediate certificate signed using the MD5 or SHA1 algorithm as trusted.
Eset Internet Security -
Eset Nod32 Antivirus -
Eset Smart Security -
Eset Mail Security -
Eset Security -
Eset Server Security -
Eset Server Security
Eset File Security -
Eset Endpoint Antivirus
Eset Endpoint Security -
Eset Endpoint Antivirus -
7.8
CVSSv3
CVE-2020-11446
ESET Antivirus and Antispyware Module module 1553 through 1560 allows a user with limited access rights to create hard links in some ESET directories and then force the product to write through these links into files that would normally not be write-able by the user, thus achievi...
Eset Internet Security -
Eset Nod32 Antivirus -
Eset Smart Security -
Eset Endpoint Security -
Eset Endpoint Antivirus -
Eset Mail Security -
Eset File Security -
Eset Antivirus And Antispyware
5.5
CVSSv3
CVE-2023-7043
Unquoted service path in ESET products allows to drop a prepared program to a specific location and run on boot with the NT AUTHORITY\NetworkService permissions.
Eset Mail Security 10.1.10012.0
Eset Smart Security Premium
Eset Internet Security
Eset Nod32 Antivirus
Eset Endpoint Antivirus
Eset Endpoint Security
5.5
CVSSv3
CVE-2021-37850
ESET was made aware of a vulnerability in its consumer and business products for macOS that enables a user logged on to the system to stop the ESET daemon, effectively disabling the protection of the ESET security product until a system reboot.
Eset Cyber Security
Eset Endpoint Security
Eset Endpoint Antivirus
7.8
CVSSv3
CVE-2019-16519
ESET Cyber Security 6.7.900.0 for macOS allows a local malicious user to execute unauthorized commands as root by abusing an undocumented feature in scheduled tasks.
Eset Cyber Security
Eset Endpoint Antivirus
Eset Endpoint Security
7.8
CVSSv3
CVE-2021-37851
Local privilege escalation in Windows products of ESET allows user who is logged into the system to exploit repair feature of the installer to run malicious code with higher privileges. This issue affects: ESET, spol. s r.o. ESET NOD32 Antivirus 11.2 versions before 15.1.12.0. ES...
Eset Smart Security
Eset Internet Security
Eset Nod32 Antivirus
Eset Endpoint Antivirus
Eset Endpoint Security
Eset Security
Eset Mail Security
Eset Server Security
Eset File Security
7.1
CVSSv3
CVE-2022-27167
Privilege escalation vulnerability in Windows products of ESET, spol. s r.o. allows malicious user to exploit "Repair" and "Uninstall" features what may lead to arbitrary file deletion. This issue affects: ESET, spol. s r.o. ESET NOD32 Antivirus 11.2 versions ...
Eset Smart Security
Eset Internet Security
Eset Nod32 Antivirus
Eset Endpoint Antivirus
Eset Endpoint Security
Eset Security
Eset Mail Security
Eset Server Security
Eset File Security
5.5
CVSSv3
CVE-2020-26941
A local (authenticated) low-privileged user can exploit a behavior in an ESET installer to achieve arbitrary file overwrite (deletion) of any file via a symlink, due to insecure permissions. The possibility of exploiting this vulnerability is limited and can only take place durin...
Eset Security
Eset Mail Security
Eset File Security
Eset Endpoint Security
Eset Endpoint Antivirus
Eset Smart Security
Eset Internet Security
Eset Nod32 Antivirus
Eset Internet Security 1294
5.9
CVSSv3
CVE-2016-9892
The esets_daemon service in ESET Endpoint Antivirus for macOS prior to 6.4.168.0 and Endpoint Security for macOS prior to 6.4.168.0 does not properly verify X.509 certificates from the edf.eset.com SSL server, which allows man-in-the-middle malicious users to spoof this server an...
Eset Endpoint Security 6.3.70.1
Eset Endpoint Antivirus 6.3.70.1
7.5
CVSSv3
CVE-2022-0615
Use-after-free in eset_rtp kernel module used in ESET products for Linux allows potential malicious user to trigger denial-of-service condition on the system.
Eset Server Security
Eset Endpoint Antivirus
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »