Every CVE whose affected-product data names Eset Server Security, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2023-3160 — CVSS 7.8 (high): The vulnerability potentially allows an attacker to misuse ESET’s file operations during the module update to delete or move files…
CVE-2021-37852 — CVSS 7.8 (high): ESET products for Windows allows untrusted process to impersonate the client of a pipe, which can be leveraged by attacker to escalate…
CVE-2024-0353 — CVSS 7.8 (high): Local privilege escalation vulnerability potentially allowed an attacker to misuse ESET’s file operations to delete files without having…
CVE-2023-2847 — CVSS 7.8 (high): During internal security analysis, a local privilege escalation vulnerability has been identified. On a machine with the affected ESET…
CVE-2023-5594 — CVSS 7.5 (high): Improper validation of the server’s certificate chain in secure traffic scanning feature considered intermediate certificate signed using…
CVE-2021-37851 — CVSS 7.3 (high): Local privilege escalation in Windows products of ESET allows user who is logged into the system to exploit repair feature of the installer…
CVE-2022-27167 — CVSS 7.1 (high): Privilege escalation vulnerability in Windows products of ESET, spol. s r.o. allows attacker to exploit "Repair" and "Uninstall" features…
CVE-2024-3779 — CVSS 6.1 (medium): Denial of service vulnerability present shortly after product installation or upgrade, potentially allowed an attacker to render ESET’s…
CVE-2022-0615 — CVSS 5.9 (medium): Use-after-free in eset_rtp kernel module used in ESET products for Linux allows potential attacker to trigger denial-of-service condition…