Every CVE whose affected-product data names Eset Nod32 Antivirus, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (26)
CVE-2020-10180 — CVSS 9.8 (critical): The ESET AV parsing engine allows virus-detection bypass via a crafted BZ2 Checksum field in an archive. This affects versions before 1294…
CVE-2008-5534 — CVSS 9.3 (critical): ESET NOD32 Antivirus 3662 and possibly 3440, when Internet Explorer 6 or 7 is used, allows remote attackers to bypass detection of malware…
CVE-2018-0649 — CVSS 7.8 (high): Untrusted search path vulnerability in the installers of multiple Canon IT Solutions Inc. software programs (ESET Smart Security Premium…
CVE-2024-0353 — CVSS 7.8 (high): Local privilege escalation vulnerability potentially allowed an attacker to misuse ESET’s file operations to delete files without having…
CVE-2021-37852 — CVSS 7.8 (high): ESET products for Windows allows untrusted process to impersonate the client of a pipe, which can be leveraged by attacker to escalate…
CVE-2020-11446 — CVSS 7.8 (high): ESET Antivirus and Antispyware Module module 1553 through 1560 allows a user with limited access rights to create hard links in some ESET…
CVE-2007-3970 — CVSS 7.6 (high): Race condition in ESET NOD32 Antivirus before 2.2289 allows remote attackers to execute arbitrary code via a crafted CAB file, which…
CVE-2020-10193 — CVSS 7.5 (high): ESET Archive Support Module before 1294 allows virus-detection bypass via crafted RAR Compression Information in an archive. This affects…
CVE-2023-5594 — CVSS 7.5 (high): Improper validation of the server’s certificate chain in secure traffic scanning feature considered intermediate certificate signed using…
CVE-2021-37851 — CVSS 7.3 (high): Local privilege escalation in Windows products of ESET allows user who is logged into the system to exploit repair feature of the installer…
CVE-2022-27167 — CVSS 7.1 (high): Privilege escalation vulnerability in Windows products of ESET, spol. s r.o. allows attacker to exploit "Repair" and "Uninstall" features…
CVE-2020-26941 — CVSS 5.5 (medium): A local (authenticated) low-privileged user can exploit a behavior in an ESET installer to achieve arbitrary file overwrite (deletion) of…
CVE-2020-9264 — CVSS 5.5 (medium): ESET Archive Support Module before 1296 allows virus-detection bypass via a crafted Compression Information Field in a ZIP archive. This…
CVE-2012-1425 — CVSS 4.3 (medium): The TAR file parser in Avira AntiVir 7.11.1.163, Antiy Labs AVL SDK 2.0.3.7, Quick Heal (aka Cat QuickHeal) 11.00, Emsisoft Anti-Malware…
CVE-2012-1423 — CVSS 4.3 (medium): The TAR file parser in Command Antivirus 5.2.11.5, Emsisoft Anti-Malware 5.1.0.1, F-Prot Antivirus 4.6.2.117, Fortinet Antivirus 4.2.254.0…
CVE-2012-1422 — CVSS 4.3 (medium): The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00, NOD32 Antivirus 5795, Norman Antivirus 6.06.12, and Rising Antivirus…
CVE-2012-1420 — CVSS 4.3 (medium): The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00, Command Antivirus 5.2.11.5, F-Prot Antivirus 4.6.2.117, Fortinet Antivirus…
CVE-2008-5425 — CVSS 4.3 (medium): ESet NOD32 2.70.0039.0000 does not properly handle (1) multipart/mixed e-mail messages with many MIME parts and possibly (2) e-mail…
CVE-2012-1449 — CVSS 4.3 (medium): The CAB file parser in NOD32 Antivirus 5795 and Rising Antivirus 22.83.00.03 allows remote attackers to bypass malware detection via a CAB…
CVE-2012-1455 — CVSS 4.3 (medium): The CAB file parser in NOD32 Antivirus 5795 and Rising Antivirus 22.83.00.03 allows remote attackers to bypass malware detection via a CAB…
CVE-2012-1456 — CVSS 4.3 (medium): The TAR file parser in AVG Anti-Virus 10.0.0.1190, Quick Heal (aka Cat QuickHeal) 11.00, Comodo Antivirus 7424, Emsisoft Anti-Malware…
CVE-2012-1457 — CVSS 4.3 (medium): The TAR file parser in Avira AntiVir 7.11.1.163, Antiy Labs AVL SDK 2.0.3.7, avast! Antivirus 4.8.1351.0 and 5.0.677.0, AVG Anti-Virus…
CVE-2012-1459 — CVSS 4.3 (medium): The TAR file parser in AhnLab V3 Internet Security 2011.01.18.00, Avira AntiVir 7.11.1.163, Antiy Labs AVL SDK 2.0.3.7, avast! Antivirus…
CVE-2012-1443 — CVSS 4.3 (medium): The RAR file parser in ClamAV 0.96.4, Rising Antivirus 22.83.00.03, Quick Heal (aka Cat QuickHeal) 11.00, G Data AntiVirus 21, AVEngine…
CVE-2023-7043 — CVSS 3.3 (low): Unquoted service path in ESET products allows to drop a prepared program to a specific location and run on boot with the NT…