CVE-2023-3160

The vulnerability potentially allows an attacker to misuse ESETs file operations during the module update to delete or move files without having proper permissions.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
ESETCNA
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CVEADP
---
---
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 13%
VendorProductVersion
esetendpoint_antivirus
-
esetendpoint_security
-
esetinternet_security
-
esetmail_security
-
esetmail_security
-
esetnod32
-
esetsecurity
-
esetserver_security
-
esetsmart_security
-
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://support.eset.com/en/ca8466
https://support.eset.com/en/ca8466