CVE-2022-27167

Summary

Privilege escalation vulnerability in Windows products of ESET, spol. s r.o. allows attacker to exploit "Repair" and "Uninstall" features what may lead to arbitrary file deletion. This issue affects: ESET, spol. s r.o. ESET NOD32 Antivirus 11.2 versions prior to 15.1.12.0. ESET, spol. s r.o. ESET Internet Security 11.2 versions prior to 15.1.12.0. ESET, spol. s r.o. ESET Smart Security Premium 11.2 versions prior to 15.1.12.0. ESET, spol. s r.o. ESET Endpoint Antivirus 6.0 versions prior to 9.0.2046.0. ESET, spol. s r.o. ESET Endpoint Security 6.0 versions prior to 9.0.2046.0. ESET, spol. s r.o. ESET Server Security for Microsoft Windows Server 8.0 versions prior to 9.0.12012.0. ESET, spol. s r.o. ESET File Security for Microsoft Windows Server 8.0.12013.0. ESET, spol. s r.o. ESET Mail Security for Microsoft Exchange Server 6.0 versions prior to 8.0.10020.0. ESET, spol. s r.o. ESET Mail Security for IBM Domino 6.0 versions prior to 8.0.14011.0. ESET, spol. s r.o. ESET Security for Microsoft SharePoint Server 6.0 versions prior to 8.0.15009.0.

Affected Software

VendorProductVersion RangeStatus
ESET, spol. s r.o.ESET NOD32 Antivirus11.2 < 15.1.12.0affected
ESET, spol. s r.o.ESET Internet Security11.2 < 15.1.12.0affected
ESET, spol. s r.o.ESET Smart Security Premium11.2 < 15.1.12.0affected
ESET, spol. s r.o.ESET Endpoint Antivirus6.0 < 9.0.2046.0affected
ESET, spol. s r.o.ESET Endpoint Security6.0 < 9.0.2046.0affected
ESET, spol. s r.o.ESET Server Security for Microsoft Windows Server8.0 < 9.0.12012.0affected
ESET, spol. s r.o.ESET File Security for Microsoft Windows Server6.0 8.0.12013.0affected
ESET, spol. s r.o.ESET Mail Security for Microsoft Exchange Server6.0 < 8.0.10020.0affected
ESET, spol. s r.o.ESET Mail Security for IBM Domino6.0 < 8.0.14011.0affected
ESET, spol. s r.o.ESET Security for Microsoft SharePoint Server6.0 < 8.0.15009.0affected

Weaknesses

  • CWE-280: CWE-280 Improper Handling of Insufficient Permissions or Privileges

ADP Enrichment

CVE Program Container

Additional References

References