CVE-2024-3779

EUVD-2024-32351
Denial of service vulnerability present shortly after product installation or upgrade, potentially allowed an attacker to render ESET’s security product inoperable, provided non-default preconditions were met.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.1 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
ESETCNA
6.1 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 30%
Affected Products (NVD)
VendorProductVersion
esetinternet_security
𝑥
< 17.2.7.0
esetnod32
𝑥
< 17.2.7.0
esetsecurity
𝑥
< 17.2.7.0
esetsmart_security
𝑥
< 17.2.7.0
esetendpoint_antivirus
𝑥
< 11.1.2039.0
esetendpoint_security
𝑥
< 11.1.2039.0
esetserver_security
𝑥
< 11.0.12012.0
esetmail_security
𝑥
≤ 11.0.10008.0
esetmail_security
-
esetsecurity
𝑥
< 11.0.15004.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://support.eset.com/en/ca8688
https://support.eset.com/en/ca8688