CVE-2023-3160

Name of the Vulnerable Software and Affected Versions ESET NOD32 Antivirus (affected versions not specified) ESET Internet Security (affected versions not specified) ESET Smart Security Premium (affected versions not specified) ESET Endpoint Antivirus (affected versions not specified) ESET Endpoint Security (affected versions not specified) ESET Server Security for Microsoft Windows Server (affected versions not specified) ESET File Security for Microsoft Windows Server (affected versions not specified) ESET Mail Security for Microsoft Exchange Server (affected versions not specified) ESET Mail Security for IBM Domino (affected versions not specified) ESET Security for Microsoft SharePoint Server (affected versions not specified)

Description The issue is related to errors in processing permissions in the user interface of ESET security products. Exploitation of this issue may allow an attacker to elevate their privileges. It potentially allows an attacker to misuse ESET's file operations during the module update to delete or move files without having proper permissions.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.