CVE-2023-3160
Local privilege escalation in security products for Windows
The vulnerability potentially allows an attacker to misuse ESET’s file operations during the module update to delete or move files without having proper permissions.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected products
ESET, spol. s r.o. · ESET Endpoint AntivirusESET, spol. s r.o. · ESET Endpoint SecurityESET, spol. s r.o. · ESET Internet SecurityESET, spol. s r.o. · ESET Mail Security for IBM DominoESET, spol. s r.o. · ESET Mail Security for Microsoft Exchange ServerESET, spol. s r.o. · ESET NOD32 AntivirusESET, spol. s r.o. · ESET Security for Microsoft SharePoint ServerESET, spol. s r.o. · ESET Server Security for Windows Server (File Security)ESET, spol. s r.o. · ESET Smart Security PremiumWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://support.eset.com/en/ca8466