ГлавнаяУязвимости → CVE-2024-0353
7.8высокая

CVE-2024-0353

Описание

Local privilege escalation vulnerability potentially allowed an attacker to misuse ESET’s file operations to delete files without having proper permission.

Затрагиваемое ПО
Eset Endpoint antivirusEset Endpoint securityEset File securityEset Internet securityEset Mail securityEset Nod32 antivirusEset SecurityEset Server securityEset Smart security
CVSS
Балл7.8 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://support.eset.com/en/ca8612-eset-customer-advisory-link-following-local-privilege-escalation-vulnerability-in-eset-products-for-windows-fixedhttps://packetstormsecurity.com/files/179495/ESET-NOD32-Antivirus-17.2.7.0-Unquoted-Service-Path.htmlhttps://packetstormsecurity.com/files/182464/ESET-NOD32-Antivirus-18.0.12.0-Unquoted-Service-Path.htmlhttps://support.eset.com/en/ca8612-eset-customer-advisory-link-following-local-privilege-escalation-vulnerability-in-eset-products-for-windows-fixedhttps://www.exploit-db.com/exploits/51351https://www.exploit-db.com/exploits/51964