Privilege escalation vulnerability in Windows products of ESET, spol. s r.o. allows attacker to exploit "Repair" and "Uninstall" features what may lead to arbitrary file deletion. This issue affects: ESET, spol. s r.o. ESET NOD32 Antivirus 11.2 versions prior to 15.1.12.0. ESET, spol. s r.o. ESET Internet Security 11.2 versions prior to 15.1.12.0. ESET, spol. s r.o. ESET Smart Security Premium 11.2 versions prior to 15.1.12.0. ESET, spol. s r.o. ESET Endpoint Antivirus 6.0 versions prior to 9.0.2046.0. ESET, spol. s r.o. ESET Endpoint Security 6.0 versions prior to 9.0.2046.0. ESET, spol. s r.o. ESET Server Security for Microsoft Windows Server 8.0 versions prior to 9.0.12012.0. ESET, spol. s r.o. ESET File Security for Microsoft Windows Server 8.0.12013.0. ESET, spol. s r.o. ESET Mail Security for Microsoft Exchange Server 6.0 versions prior to 8.0.10020.0. ESET, spol. s r.o. ESET Mail Security for IBM Domino 6.0 versions prior to 8.0.14011.0. ESET, spol. s r.o. ESET Security for Microsoft SharePoint Server 6.0 versions prior to 8.0.15009.0.
References
Link | Resource |
---|---|
https://support.eset.com/en/ca8268 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
18 May 2022, 16:35
Type | Values Removed | Values Added |
---|---|---|
First Time |
Eset
Eset server Security Eset endpoint Antivirus Eset smart Security Eset file Security Eset nod32 Antivirus Eset endpoint Security Eset internet Security Eset mail Security Eset security |
|
CWE | CWE-755 | |
CPE | cpe:2.3:a:eset:server_security:*:*:*:*:*:azure:*:* cpe:2.3:a:eset:internet_security:*:*:*:*:*:windows:*:* cpe:2.3:a:eset:file_security:*:*:*:*:*:windows_server:*:* cpe:2.3:a:eset:mail_security:*:*:*:*:*:domino:*:* cpe:2.3:a:eset:smart_security:*:*:*:*:premium:windows:*:* cpe:2.3:a:eset:endpoint_security:*:*:*:*:*:windows:*:* cpe:2.3:a:eset:nod32_antivirus:*:*:*:*:*:windows:*:* cpe:2.3:a:eset:endpoint_antivirus:*:*:*:*:*:windows:*:* cpe:2.3:a:eset:server_security:*:*:*:*:*:windows_server:*:* cpe:2.3:a:eset:mail_security:*:*:*:*:*:exchange_server:*:* cpe:2.3:a:eset:security:*:*:*:*:*:sharepoint_server:*:* |
|
CVSS |
v2 : v3 : |
v2 : 3.6
v3 : 7.1 |
References | (MISC) https://support.eset.com/en/ca8268 - Vendor Advisory |
10 May 2022, 20:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-05-10 20:15
Updated : 2023-12-10 14:22
NVD link : CVE-2022-27167
Mitre link : CVE-2022-27167
CVE.ORG link : CVE-2022-27167
JSON object : View
Products Affected
eset
- mail_security
- nod32_antivirus
- server_security
- endpoint_antivirus
- file_security
- endpoint_security
- smart_security
- internet_security
- security