Eset Endpoint_security
14 CVEs affecting Eset Endpoint_security. Latest disclosed: 2024-07-16. Critical: 0, High: 8.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-0353 | High | 7.8 | 2024-02-15 | Local privilege escalation vulnerability potentially allowed an attacker to misuse ESET’s file operations to delete files without having proper permission. |
CVE-2023-3160 | High | 7.8 | 2023-08-14 | The vulnerability potentially allows an attacker to misuse ESET’s file operations during the module update to delete or move files without having proper permi… |
CVE-2021-37852 | High | 7.8 | 2022-02-09 | ESET products for Windows allows untrusted process to impersonate the client of a pipe, which can be leveraged by attacker to escalate privileges in the contex… |
CVE-2020-11446 | High | 7.8 | 2020-04-29 | ESET Antivirus and Antispyware Module module 1553 through 1560 allows a user with limited access rights to create hard links in some ESET directories and then… |
CVE-2019-16519 | High | 7.8 | 2019-10-14 | ESET Cyber Security 6.7.900.0 for macOS allows a local attacker to execute unauthorized commands as root by abusing an undocumented feature in scheduled tasks. |
CVE-2023-5594 | High | 7.5 | 2023-12-21 | Improper validation of the server’s certificate chain in secure traffic scanning feature considered intermediate certificate signed using the MD5 or SHA1 algor… |
CVE-2021-37851 | High | 7.3 | 2022-05-11 | Local privilege escalation in Windows products of ESET allows user who is logged into the system to exploit repair feature of the installer to run malicious co… |
CVE-2022-27167 | High | 7.1 | 2022-05-10 | Privilege escalation vulnerability in Windows products of ESET, spol. s r.o. allows attacker to exploit "Repair" and "Uninstall" features what may lead to arbi… |
CVE-2024-3779 | Medium | 6.1 | 2024-07-16 | Denial of service vulnerability present shortly after product installation or upgrade, potentially allowed an attacker to render ESET’s security product inoper… |
CVE-2016-9892 | Medium | 5.9 | 2017-03-02 | The esets_daemon service in ESET Endpoint Antivirus for macOS before 6.4.168.0 and Endpoint Security for macOS before 6.4.168.0 does not properly verify X.509… |
CVE-2021-37850 | Medium | 5.5 | 2021-11-08 | ESET was made aware of a vulnerability in its consumer and business products for macOS that enables a user logged on to the system to stop the ESET daemon, eff… |
CVE-2020-26941 | Medium | 5.5 | 2021-01-26 | A local (authenticated) low-privileged user can exploit a behavior in an ESET installer to achieve arbitrary file overwrite (deletion) of any file via a symlin… |
CVE-2023-7043 | Low | 3.3 | 2024-01-31 | Unquoted service path in ESET products allows to drop a prepared program to a specific location and run on boot with the NT AUTHORITY\NetworkService permis… |
CVE-2014-4973 | | 2014-09-23 | The ESET Personal Firewall NDIS filter (EpFwNdis.sys) driver in the Firewall Module Build 1183 (20140214) and earlier in ESET Smart Security and ESET Endpoint… |