CVE-2023-3160

🗓️ 14 Aug 2023 09:27:02Reported by ESETType

Vulnerability in ESET module update allowing unauthorized file operations

Reporter	Title	Published	Views	Family All 9
CNNVD	ESET Eset Endpoint Antivirus and Eset Server Security Security Vulnerabilities	14 Aug 202300:00	–	cnnvd
Cvelist	CVE-2023-3160 Local privilege escalation in security products for Windows	14 Aug 202309:27	–	cvelist
EUVD	EUVD-2023-43844	3 Oct 202520:07	–	euvd
NVD	CVE-2023-3160	14 Aug 202310:15	–	nvd
Prion	Design/Logic Flaw	14 Aug 202310:15	–	prion
Positive Technologies	PT-2023-4416 · Eset +2 · Eset Endpoint Antivirus +12	11 Aug 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-3160	23 May 202505:18	–	redhatcve
Vulnrichment	CVE-2023-3160 Local privilege escalation in security products for Windows	14 Aug 202309:27	–	vulnrichment
Zero Day Initiative	ESET Smart Security Link Following Local Privilege Escalation Vulnerability	15 Aug 202300:00	–	zdi

NVD

Node

eset endpoint_antivirusMatch--

eset endpoint_securityMatch-

eset internet_securityMatch-

eset mail_securityMatch-domino

eset mail_securityMatch-exchange_server

eset nod32Match-

eset securityMatch-sharepoint_server

eset server_securityMatch-windows_server

eset smart_securityMatch-premium

[
  {
    "defaultStatus": "unaffected",
    "modules": [
      "HIPS"
    ],
    "product": "ESET NOD32 Antivirus",
    "vendor": "ESET, spol. s r.o.",
    "versions": [
      {
        "status": "unaffected",
        "version": "1463"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "modules": [
      "HIPS"
    ],
    "product": "ESET Internet Security",
    "vendor": "ESET, spol. s r.o.",
    "versions": [
      {
        "status": "unaffected",
        "version": "1463"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "modules": [
      "HIPS"
    ],
    "product": "ESET Smart Security Premium",
    "vendor": "ESET, spol. s r.o.",
    "versions": [
      {
        "status": "unaffected",
        "version": "1463"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "modules": [
      "HIPS"
    ],
    "product": "ESET Endpoint Antivirus",
    "vendor": "ESET, spol. s r.o.",
    "versions": [
      {
        "status": "unaffected",
        "version": "1463"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "modules": [
      "HIPS"
    ],
    "product": "ESET Endpoint Security",
    "vendor": "ESET, spol. s r.o.",
    "versions": [
      {
        "status": "unaffected",
        "version": "1463"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "modules": [
      "HIPS"
    ],
    "product": "ESET Server Security for Windows Server (File Security)",
    "vendor": "ESET, spol. s r.o.",
    "versions": [
      {
        "status": "unaffected",
        "version": "1463"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "modules": [
      "HIPS"
    ],
    "product": "ESET Mail Security for Microsoft Exchange Server",
    "vendor": "ESET, spol. s r.o.",
    "versions": [
      {
        "status": "unaffected",
        "version": "1463"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "modules": [
      "HIPS"
    ],
    "product": "ESET Mail Security for IBM Domino",
    "vendor": "ESET, spol. s r.o.",
    "versions": [
      {
        "status": "unaffected",
        "version": "1463"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "modules": [
      "HIPS"
    ],
    "product": "ESET Security for Microsoft SharePoint Server",
    "vendor": "ESET, spol. s r.o.",
    "versions": [
      {
        "status": "unaffected",
        "version": "1463"
      }
    ]
  }
]

Source	Link
support	www.support.eset.com/en/ca8466

21 Nov 2024 08:16Current

7.6High risk

Vulners AI Score7.6

CVSS 3.17.8

EPSS0.00049

SSVC

CWE-269