Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
eset vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-0353
Local privilege escalation vulnerability potentially allowed an malicious user to misuse ESET’s file operations to delete files without having proper permission.
5.5
CVSSv3
CVE-2023-7043
Unquoted service path in ESET products allows to drop a prepared program to a specific location and run on boot with the NT AUTHORITY\NetworkService permissions.
Eset Mail Security 10.1.10012.0
Eset Smart Security Premium
Eset Internet Security
Eset Nod32 Antivirus
Eset Endpoint Antivirus
Eset Endpoint Security
8.6
CVSSv3
CVE-2023-5594
Improper validation of the server’s certificate chain in secure traffic scanning feature considered intermediate certificate signed using the MD5 or SHA1 algorithm as trusted.
Eset Internet Security -
Eset Nod32 Antivirus -
Eset Smart Security -
Eset Mail Security -
Eset Security -
Eset Server Security -
Eset Server Security
Eset File Security -
Eset Endpoint Antivirus
Eset Endpoint Security -
Eset Endpoint Antivirus -
7.8
CVSSv3
CVE-2023-3160
The vulnerability potentially allows an malicious user to misuse ESET’s file operations during the module update to delete or move files without having proper permissions.
Eset Internet Security -
Eset Endpoint Security -
Eset Endpoint Antivirus -
Eset Smart Security -
Eset Mail Security -
Eset Nod32 -
Eset Security -
Eset Server Security -
7.8
CVSSv3
CVE-2023-2847
During internal security analysis, a local privilege escalation vulnerability has been identified. On a machine with the affected ESET product installed, it was possible for a user with lower privileges due to improper privilege management to trigger actions with root privileges...
Eset Endpoint Antivirus
Eset Server Security
Eset Cyber Security
6.5
CVSSv3
CVE-2022-2402
The vulnerability in the driver dlpfde.sys enables a user logged into the system to perform system calls leading to kernel stack overflow, resulting in a system crash, for instance, a BSOD.
Eset Full Disk Encryption
Eset Endpoint Encryption
7.8
CVSSv3
CVE-2021-37851
Local privilege escalation in Windows products of ESET allows user who is logged into the system to exploit repair feature of the installer to run malicious code with higher privileges. This issue affects: ESET, spol. s r.o. ESET NOD32 Antivirus 11.2 versions before 15.1.12.0. ES...
Eset Smart Security
Eset Internet Security
Eset Nod32 Antivirus
Eset Endpoint Antivirus
Eset Endpoint Security
Eset Security
Eset Server Security
Eset File Security
Eset Mail Security
7.1
CVSSv3
CVE-2022-27167
Privilege escalation vulnerability in Windows products of ESET, spol. s r.o. allows malicious user to exploit "Repair" and "Uninstall" features what may lead to arbitrary file deletion. This issue affects: ESET, spol. s r.o. ESET NOD32 Antivirus 11.2 versions ...
Eset Smart Security
Eset Internet Security
Eset Nod32 Antivirus
Eset Endpoint Antivirus
Eset Endpoint Security
Eset Security
Eset Mail Security
Eset Server Security
Eset File Security
6.7
CVSSv3
CVE-2021-3972
A potential vulnerability by a driver used during manufacturing process on some consumer Lenovo Notebook devices' BIOS that was mistakenly not deactivated may allow an attacker with elevated privileges to modify secure boot setting by modifying an NVRAM variable.
Lenovo Ideapad 3-14ada05 Firmware
Lenovo Ideapad 3-14ada6 Firmware
Lenovo Ideapad 3-14alc6 Firmware
Lenovo Ideapad 3-14are05 Firmware
Lenovo Ideapad 3-15ada6 Firmware
Lenovo Ideapad 3-15alc6 Firmware
Lenovo Ideapad 3-15are05 Firmware
Lenovo Ideapad 3-15igl05 Firmware
Lenovo Ideapad 3-17ada05 Firmware
Lenovo Ideapad 3-17ada6 Firmware
Lenovo Ideapad 3-17alc6 Firmware
Lenovo Ideapad 3-17are05 Firmware
Lenovo Ideapad 3-17iil05 Firmware
Lenovo Ideapad 3-17itl6 Firmware
Lenovo Ideapad 3-15ada05 Firmware
Lenovo L3 15iml05 Firmware
Lenovo L3-15itl6 Firmware
Lenovo L340-15irh Firmware
Lenovo L340-15iwl Firmware
Lenovo L340-15iwl Touch Firmware
Lenovo L340-17irh Firmware
Lenovo L340-17iwl Firmware
1 Github repository
1 Article
6.7
CVSSv3
CVE-2021-3970
A potential vulnerability in LenovoVariable SMI Handler due to insufficient validation in some Lenovo Notebook models BIOS may allow an attacker with local access and elevated privileges to execute arbitrary code.
Lenovo Ideapad 3-14ada05 Firmware
Lenovo Ideapad 3-14ada6 Firmware
Lenovo Ideapad 3-14alc6 Firmware
Lenovo Ideapad 3-14are05 Firmware
Lenovo Ideapad 3-15ada6 Firmware
Lenovo Ideapad 3-15alc6 Firmware
Lenovo Ideapad 3-15are05 Firmware
Lenovo Ideapad 3-15igl05 Firmware
Lenovo Ideapad 3-17ada05 Firmware
Lenovo Ideapad 3-17ada6 Firmware
Lenovo Ideapad 3-17alc6 Firmware
Lenovo Ideapad 3-17are05 Firmware
Lenovo Ideapad 3-17iil05 Firmware
Lenovo Ideapad 3-17itl6 Firmware
Lenovo Ideapad 3-15ada05 Firmware
Lenovo L3 15iml05 Firmware
Lenovo L3-15itl6 Firmware
Lenovo L340-15irh Firmware
Lenovo L340-15iwl Firmware
Lenovo L340-15iwl Touch Firmware
Lenovo L340-17irh Firmware
Lenovo L340-17iwl Firmware
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »