CVE-2023-7043

Name of the Vulnerable Software and Affected Versions ESET products (affected versions not specified)

Description The issue is related to an unquoted service path in ESET products, which allows dropping a prepared program to a specific location and running it on boot with NT AUTHORITYNetworkService permissions. This attack was possible only immediately after an upgrade from a previous ESET product version.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.