CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:P/A:P
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
12.6%
Privilege escalation vulnerability in Windows products of ESET, spol. s r.o. allows attacker to exploit “Repair” and “Uninstall” features what may lead to arbitrary file deletion. This issue affects: ESET, spol. s r.o. ESET NOD32 Antivirus 11.2 versions prior to 15.1.12.0. ESET, spol. s r.o. ESET Internet Security 11.2 versions prior to 15.1.12.0. ESET, spol. s r.o. ESET Smart Security Premium 11.2 versions prior to 15.1.12.0. ESET, spol. s r.o. ESET Endpoint Antivirus 6.0 versions prior to 9.0.2046.0. ESET, spol. s r.o. ESET Endpoint Security 6.0 versions prior to 9.0.2046.0. ESET, spol. s r.o. ESET Server Security for Microsoft Windows Server 8.0 versions prior to 9.0.12012.0. ESET, spol. s r.o. ESET File Security for Microsoft Windows Server 8.0.12013.0. ESET, spol. s r.o. ESET Mail Security for Microsoft Exchange Server 6.0 versions prior to 8.0.10020.0. ESET, spol. s r.o. ESET Mail Security for IBM Domino 6.0 versions prior to 8.0.14011.0. ESET, spol. s r.o. ESET Security for Microsoft SharePoint Server 6.0 versions prior to 8.0.15009.0.
Vendor | Product | Version | CPE |
---|---|---|---|
eset | endpoint_antivirus | * | cpe:2.3:a:eset:endpoint_antivirus:*:*:*:*:*:windows:*:* |
eset | endpoint_security | * | cpe:2.3:a:eset:endpoint_security:*:*:*:*:*:windows:*:* |
eset | file_security | * | cpe:2.3:a:eset:file_security:*:*:*:*:*:windows_server:*:* |
eset | internet_security | * | cpe:2.3:a:eset:internet_security:*:*:*:*:*:windows:*:* |
eset | mail_security | * | cpe:2.3:a:eset:mail_security:*:*:*:*:*:exchange_server:*:* |
eset | mail_security | * | cpe:2.3:a:eset:mail_security:*:*:*:*:*:domino:*:* |
eset | nod32_antivirus | * | cpe:2.3:a:eset:nod32_antivirus:*:*:*:*:*:windows:*:* |
eset | security | * | cpe:2.3:a:eset:security:*:*:*:*:*:sharepoint_server:*:* |
eset | server_security | * | cpe:2.3:a:eset:server_security:*:*:*:*:*:azure:*:* |
eset | server_security | * | cpe:2.3:a:eset:server_security:*:*:*:*:*:windows_server:*:* |
[
{
"product": "ESET NOD32 Antivirus",
"vendor": "ESET, spol. s r.o.",
"versions": [
{
"lessThan": "15.1.12.0",
"status": "affected",
"version": "11.2",
"versionType": "custom"
}
]
},
{
"product": "ESET Internet Security",
"vendor": "ESET, spol. s r.o.",
"versions": [
{
"lessThan": "15.1.12.0",
"status": "affected",
"version": "11.2",
"versionType": "custom"
}
]
},
{
"product": "ESET Smart Security Premium",
"vendor": "ESET, spol. s r.o.",
"versions": [
{
"lessThan": "15.1.12.0",
"status": "affected",
"version": "11.2",
"versionType": "custom"
}
]
},
{
"product": "ESET Endpoint Antivirus",
"vendor": "ESET, spol. s r.o.",
"versions": [
{
"changes": [
{
"at": "8.1.2050.0",
"status": "unaffected"
},
{
"at": "8.0.2053.0",
"status": "unaffected"
}
],
"lessThan": "9.0.2046.0",
"status": "affected",
"version": "6.0",
"versionType": "custom"
}
]
},
{
"product": "ESET Endpoint Security",
"vendor": "ESET, spol. s r.o.",
"versions": [
{
"changes": [
{
"at": "8.1.2050.0",
"status": "unaffected"
},
{
"at": "8.0.2053.0",
"status": "unaffected"
}
],
"lessThan": "9.0.2046.0",
"status": "affected",
"version": "6.0",
"versionType": "custom"
}
]
},
{
"product": "ESET Server Security for Microsoft Windows Server",
"vendor": "ESET, spol. s r.o.",
"versions": [
{
"lessThan": "9.0.12012.0",
"status": "affected",
"version": "8.0",
"versionType": "custom"
}
]
},
{
"product": "ESET File Security for Microsoft Windows Server",
"vendor": "ESET, spol. s r.o.",
"versions": [
{
"status": "affected",
"version": "6.0 8.0.12013.0"
}
]
},
{
"product": "ESET Mail Security for Microsoft Exchange Server",
"vendor": "ESET, spol. s r.o.",
"versions": [
{
"lessThan": "8.0.10020.0",
"status": "affected",
"version": "6.0",
"versionType": "custom"
}
]
},
{
"product": "ESET Mail Security for IBM Domino",
"vendor": "ESET, spol. s r.o.",
"versions": [
{
"lessThan": "8.0.14011.0",
"status": "affected",
"version": "6.0",
"versionType": "custom"
}
]
},
{
"product": "ESET Security for Microsoft SharePoint Server",
"vendor": "ESET, spol. s r.o.",
"versions": [
{
"lessThan": "8.0.15009.0",
"status": "affected",
"version": "6.0",
"versionType": "custom"
}
]
}
]
More
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:P/A:P
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
12.6%