Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
eset security - vulnerabilities and exploits
(subscribe to this query)
8.6
CVSSv3
CVE-2023-5594
Improper validation of the server’s certificate chain in secure traffic scanning feature considered intermediate certificate signed using the MD5 or SHA1 algorithm as trusted.
Eset Internet Security -
Eset Nod32 Antivirus -
Eset Smart Security -
Eset Mail Security -
Eset Security -
Eset Server Security -
Eset Server Security
Eset File Security -
Eset Endpoint Antivirus
Eset Endpoint Security -
Eset Endpoint Antivirus -
7.8
CVSSv3
CVE-2021-37852
ESET products for Windows allows untrusted process to impersonate the client of a pipe, which can be leveraged by malicious user to escalate privileges in the context of NT AUTHORITY\SYSTEM.
Eset Mail Security
Eset Internet Security
Eset Endpoint Security
Eset Endpoint Antivirus
Eset File Security
Eset Nod32 Antivirus
Eset Security
Eset Server Security
Eset Server Security 8.0.12003.0
Eset Server Security 8.0.12003.1
Eset Smart Security
7.1
CVSSv3
CVE-2022-27167
Privilege escalation vulnerability in Windows products of ESET, spol. s r.o. allows malicious user to exploit "Repair" and "Uninstall" features what may lead to arbitrary file deletion. This issue affects: ESET, spol. s r.o. ESET NOD32 Antivirus 11.2 versions ...
Eset Smart Security
Eset Internet Security
Eset Nod32 Antivirus
Eset Endpoint Antivirus
Eset Endpoint Security
Eset Security
Eset Mail Security
Eset Server Security
Eset File Security
7.8
CVSSv3
CVE-2021-37851
Local privilege escalation in Windows products of ESET allows user who is logged into the system to exploit repair feature of the installer to run malicious code with higher privileges. This issue affects: ESET, spol. s r.o. ESET NOD32 Antivirus 11.2 versions before 15.1.12.0. ES...
Eset Smart Security
Eset Internet Security
Eset Nod32 Antivirus
Eset Endpoint Antivirus
Eset Endpoint Security
Eset Security
Eset Server Security
Eset File Security
Eset Mail Security
7.8
CVSSv3
CVE-2023-3160
The vulnerability potentially allows an malicious user to misuse ESET’s file operations during the module update to delete or move files without having proper permissions.
Eset Internet Security -
Eset Endpoint Security -
Eset Endpoint Antivirus -
Eset Smart Security -
Eset Mail Security -
Eset Nod32 -
Eset Security -
Eset Server Security -
5.5
CVSSv3
CVE-2020-26941
A local (authenticated) low-privileged user can exploit a behavior in an ESET installer to achieve arbitrary file overwrite (deletion) of any file via a symlink, due to insecure permissions. The possibility of exploiting this vulnerability is limited and can only take place durin...
Eset Endpoint Antivirus
Eset Endpoint Security
Eset File Security
Eset Internet Security
Eset Internet Security 1294
Eset Mail Security
Eset Nod32 Antivirus
Eset Security
Eset Smart Security
NA
CVE-2014-4973
The ESET Personal Firewall NDIS filter (EpFwNdis.sys) driver in the Firewall Module Build 1183 (20140214) and previous versions in ESET Smart Security and ESET Endpoint Security products 5.0 up to and including 7.0 allows local users to gain privileges via a crafted argument to a...
Eset Smart Security 5.0.95
Eset Smart Security 6.0.314
Eset Smart Security 5.2.9
Eset Smart Security 5.2.15
Eset Smart Security 6.0.306
Eset Smart Security 6.0.308
Eset Smart Security 5.0.94
Eset Smart Security 6.0.316
Eset Endpoint Security 5.0.2122
Eset Endpoint Security 5.0.2126
Eset Endpoint Security 5.0.2214
Eset Endpoint Security 5.0.2225
Eset Endpoint Security 5.0.2113
Eset Endpoint Security 5.0.2228
NA
CVE-2008-5724
The Personal Firewall driver (aka epfw.sys) 3.0.672.0 and previous versions in ESET Smart Security 3.0.672 and previous versions allows local users to gain privileges via a crafted IRP in a certain METHOD_NEITHER IOCTL request to \Device\Epfw that overwrites portions of memory.
Eset Smart Security 3.0.669
Eset Smart Security 3.0.667
Eset Smart Security 3.0.551
Eset Smart Security 3.0.642
Eset Smart Security 3.0.621
Eset Smart Security
Eset Smart Security 3.0.563
Eset Smart Security 3.0.560
Eset Smart Security 3.0.657
Eset Smart Security 3.0.650
1 EDB exploit
7.5
CVSSv3
CVE-2020-10193
ESET Archive Support Module prior to 1294 allows virus-detection bypass via crafted RAR Compression Information in an archive. This affects versions prior to 1294 of Smart Security Premium, Internet Security, NOD32 Antivirus, Cyber Security Pro (macOS), Cyber Security (macOS), Mo...
Eset Cyber Security
Eset Internet Security
Eset Mobile Security 1294
Eset Mobile Security
Eset Nod32 Antivirus
Eset Smart Security
Eset Smart Tv Security
7.8
CVSSv3
CVE-2020-11446
ESET Antivirus and Antispyware Module module 1553 through 1560 allows a user with limited access rights to create hard links in some ESET directories and then force the product to write through these links into files that would normally not be write-able by the user, thus achievi...
Eset Antivirus And Antispyware
Eset Endpoint Antivirus -
Eset Endpoint Security -
Eset File Security -
Eset Internet Security -
Eset Mail Security -
Eset Nod32 Antivirus -
Eset Smart Security -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »