Lucene search

PRIOn knowledge basePRION:CVE-2023-7043

HistoryJan 31, 2024 - 1:15 p.m.

Design/Logic Flaw

2024-01-3113:15:00

PRIOn knowledge base

www.prio-n.com

eset

vulnerability

unauthorized execution

nt authority\networkservice

nvd

7.1 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.0%

JSON

Unquoted service path in ESET products allows to

drop a prepared program to a specific location and run on boot with the

NT AUTHORITY\NetworkService permissions.

CPENameOperatorVersion
endpoint_antivirusge10.1.2046.0
endpoint_antiviruslt11.0.2032.0
endpoint_securityge10.1.2046.0
endpoint_securitylt11.0.2032.0
internet_securityge16.1.14.0
internet_securitylt17.0.15.0
mail_securityeq10.1.10012.0
nod32_antivirusge16.1.14.0
nod32_antiviruslt17.0.15.0
smart_security_premiumge16.1.14.0

Name	Operator	Version
endpoint_antivirus	ge	10.1.2046.0
endpoint_antivirus	lt	11.0.2032.0
endpoint_security	ge	10.1.2046.0
endpoint_security	lt	11.0.2032.0
internet_security	ge	16.1.14.0
internet_security	lt	17.0.15.0
mail_security	eq	10.1.10012.0
nod32_antivirus	ge	16.1.14.0
nod32_antivirus	lt	17.0.15.0
smart_security_premium	ge	16.1.14.0

Rows per page:

1-10 of 111

References

support.eset.com/en/ca8602