Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
eset smart security - vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2023-7043
Unquoted service path in ESET products allows to drop a prepared program to a specific location and run on boot with the NT AUTHORITY\NetworkService permissions.
Eset Mail Security 10.1.10012.0
Eset Smart Security Premium
Eset Internet Security
Eset Nod32 Antivirus
Eset Endpoint Antivirus
Eset Endpoint Security
7.8
CVSSv3
CVE-2020-11446
ESET Antivirus and Antispyware Module module 1553 through 1560 allows a user with limited access rights to create hard links in some ESET directories and then force the product to write through these links into files that would normally not be write-able by the user, thus achievi...
Eset Antivirus And Antispyware
Eset Endpoint Antivirus -
Eset Endpoint Security -
Eset File Security -
Eset Internet Security -
Eset Mail Security -
Eset Nod32 Antivirus -
Eset Smart Security -
8.6
CVSSv3
CVE-2023-5594
Improper validation of the server’s certificate chain in secure traffic scanning feature considered intermediate certificate signed using the MD5 or SHA1 algorithm as trusted.
Eset Internet Security -
Eset Nod32 Antivirus -
Eset Smart Security -
Eset Mail Security -
Eset Security -
Eset Server Security -
Eset Server Security
Eset File Security -
Eset Endpoint Antivirus
Eset Endpoint Security -
Eset Endpoint Antivirus -
7.8
CVSSv3
CVE-2021-37852
ESET products for Windows allows untrusted process to impersonate the client of a pipe, which can be leveraged by malicious user to escalate privileges in the context of NT AUTHORITY\SYSTEM.
Eset Mail Security
Eset Internet Security
Eset Endpoint Security
Eset Endpoint Antivirus
Eset File Security
Eset Nod32 Antivirus
Eset Security
Eset Server Security
Eset Server Security 8.0.12003.0
Eset Server Security 8.0.12003.1
Eset Smart Security
NA
CVE-2008-7107
easdrv.sys in ESET Smart Security 3.0.667.0 allows local users to cause a denial of service (crash) via a crafted IOCTL 0x222003 request to the \\.\easdrv device interface.
Eset Smart Security 3.0.667.0
1 EDB exploit
NA
CVE-2008-5527
ESET Smart Security, when Internet Explorer 6 or 7 is used, allows remote malicious users to bypass detection of malware in an HTML document by placing an MZ header (aka "EXE info") at the beginning, and modifying the filename to have (1) no extension, (2) a .txt extens...
Eset Smart Security 3.0
NA
CVE-2010-5160
Race condition in ESET Smart Security 4.2.35.3 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes...
Eset Smart Security 4.2.35.3
NA
CVE-2024-0353
Local privilege escalation vulnerability potentially allowed an malicious user to misuse ESET’s file operations to delete files without having proper permission.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2