Lucene search

[email protected]CVE-2022-27167

HistoryMay 10, 2022 - 8:15 p.m.

CVE-2022-27167

2022-05-1020:15:00

CWE-755

[email protected]

web.nvd.nist.gov

cve-2022-27167

eset

windows

privilege escalation

vulnerability

arbitrary file deletion

nvd

security advisory

7.1 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

7 High

AI Score

Confidence

High

3.6 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:P/A:P

0.0004 Low

EPSS

Percentile

12.1%

JSON

Privilege escalation vulnerability in Windows products of ESET, spol. s r.o. allows attacker to exploit “Repair” and “Uninstall” features what may lead to arbitrary file deletion. This issue affects: ESET, spol. s r.o. ESET NOD32 Antivirus 11.2 versions prior to 15.1.12.0. ESET, spol. s r.o. ESET Internet Security 11.2 versions prior to 15.1.12.0. ESET, spol. s r.o. ESET Smart Security Premium 11.2 versions prior to 15.1.12.0. ESET, spol. s r.o. ESET Endpoint Antivirus 6.0 versions prior to 9.0.2046.0. ESET, spol. s r.o. ESET Endpoint Security 6.0 versions prior to 9.0.2046.0. ESET, spol. s r.o. ESET Server Security for Microsoft Windows Server 8.0 versions prior to 9.0.12012.0. ESET, spol. s r.o. ESET File Security for Microsoft Windows Server 8.0.12013.0. ESET, spol. s r.o. ESET Mail Security for Microsoft Exchange Server 6.0 versions prior to 8.0.10020.0. ESET, spol. s r.o. ESET Mail Security for IBM Domino 6.0 versions prior to 8.0.14011.0. ESET, spol. s r.o. ESET Security for Microsoft SharePoint Server 6.0 versions prior to 8.0.15009.0.

CPENameOperatorVersion
eset:smart_securityeset smart securitylt15.1.12.0
eset:internet_securityeset internet securitylt15.1.12.0
eset:nod32_antiviruseset nod32 antiviruslt15.1.12.0
eset:endpoint_antiviruseset endpoint antiviruslt9.0.2046.0
eset:endpoint_antiviruseset endpoint antiviruslt8.1.2050.0
eset:endpoint_antiviruseset endpoint antiviruslt8.0.2053.0
eset:endpoint_securityeset endpoint securitylt9.0.2046.0
eset:endpoint_securityeset endpoint securitylt8.1.2050.0
eset:endpoint_securityeset endpoint securitylt8.0.2053.0
eset:securityeset securitylt8.0.15009.0

CPE	Name	Operator	Version
eset:smart_security	eset smart security	lt	15.1.12.0
eset:internet_security	eset internet security	lt	15.1.12.0
eset:nod32_antivirus	eset nod32 antivirus	lt	15.1.12.0
eset:endpoint_antivirus	eset endpoint antivirus	lt	9.0.2046.0
eset:endpoint_antivirus	eset endpoint antivirus	lt	8.1.2050.0
eset:endpoint_antivirus	eset endpoint antivirus	lt	8.0.2053.0
eset:endpoint_security	eset endpoint security	lt	9.0.2046.0
eset:endpoint_security	eset endpoint security	lt	8.1.2050.0
eset:endpoint_security	eset endpoint security	lt	8.0.2053.0
eset:security	eset security	lt	8.0.15009.0

Rows per page:

1-10 of 151

References

support.eset.com/en/ca8268

Social References

7.1 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

7 High

AI Score

Confidence

High

3.6 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:P/A:P

0.0004 Low

EPSS

Percentile

12.1%

JSON

Related for CVE-2022-27167

prion1 cvelist1