threat
engine
.sh
Back
·
··:··
Home
/
Product
/
eset endpoint antivirus
Product
eset endpoint antivirus
15 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2024-3779
< 11.1.2039.0
Denial of service vulnerability present shortly after product installation or upgrade, potentially allowed an attacker to render E
6.1
MEDIUM
CVE-2024-0353
< 8.1.2062.0
Local privilege escalation vulnerability potentially allowed an attacker to misuse ESET’s file operations to delete files withou
7.8
HIGH
CVE-2023-7043
>= 10.1.2046.0 and < 11.0.2032.0
Unquoted service path in ESET products allows to drop a prepared program to a specific location and run on boot with the NT
3.3
LOW
CVE-2023-5594
>= 10.0
Improper validation of the server’s certificate chain in secure traffic scanning feature considered intermediate certificate sig
7.5
HIGH
CVE-2023-3160
all versions
The vulnerability potentially allows an attacker to misuse ESET’s file operations during the module update to delete or move fil
7.8
HIGH
CVE-2023-2847
< 8.1.12.0
During internal security analysis, a local privilege escalation vulnerability has been identified. On a machine with the affected
7.8
HIGH
CVE-2021-37851
>= 6.0 and < 8.0.2053.0
Local privilege escalation in Windows products of ESET allows user who is logged into the system to exploit repair feature of the
7.3
HIGH
CVE-2022-27167
>= 6.0 and < 8.0.2053.0
Privilege escalation vulnerability in Windows products of ESET, spol. s r.o. allows attacker to exploit "Repair" and "Uninstall" f
7.1
HIGH
CVE-2022-0615
>= 7.1.6.0 and <= 7.1.9.0
Use-after-free in eset_rtp kernel module used in ESET products for Linux allows potential attacker to trigger denial-of-service co
5.9
MEDIUM
CVE-2021-37852
>= 6.6.2046.0 and < 7.3.2055.0
ESET products for Windows allows untrusted process to impersonate the client of a pipe, which can be leveraged by attacker to esca
7.8
HIGH
CVE-2021-37850
<= 6.10.910.0
ESET was made aware of a vulnerability in its consumer and business products for macOS that enables a user logged on to the system
5.5
MEDIUM
CVE-2020-26941
<= 7.3
A local (authenticated) low-privileged user can exploit a behavior in an ESET installer to achieve arbitrary file overwrite (delet
5.5
MEDIUM
CVE-2020-11446
all versions
ESET Antivirus and Antispyware Module 1553 through 1560 allows a user with limited access rights to create hard links in so
7.8
HIGH
CVE-2019-16519
<= 6.7.900.0
ESET Cyber Security 6.7.900.0 for macOS allows a local attacker to execute unauthorized commands as root by abusing an undocumente
7.8
HIGH
CVE-2016-9892
all versions
The esets_daemon service in ESET Endpoint Antivirus for macOS before 6.4.168.0 and Endpoint Security for macOS before 6.4.168.0 do
5.9
MEDIUM
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin