CVE-2024-11859
8.4
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
Summary
DLL Search Order Hijacking vulnerability potentially allowed an attacker with administrator privileges to load a malicious dynamic-link library and execute its code.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| ESET, spol. s r.o. | ESET NOD32 Antivirus | 0 <= 18.0.12.0 | affected |
| ESET, spol. s r.o. | ESET Internet Security | 0 <= 18.0.12.0 | affected |
| ESET, spol. s r.o. | ESET Smart Security Premium | 0 <= 18.0.12.0 | affected |
| ESET, spol. s r.o. | ESET Security Ultimate | 0 <= 18.0.12.0 | affected |
| ESET, spol. s r.o. | ESET Endpoint Antivirus for Windows | 0 <= 12.0.2038.0 | affected |
| ESET, spol. s r.o. | ESET Endpoint Antivirus for Windows | 0 <= 11.1.2053.2 | affected |
| ESET, spol. s r.o. | ESET Endpoint Security for Windows | 0 <= 12.0.2038.0 | affected |
| ESET, spol. s r.o. | ESET Endpoint Security for Windows | 0 <= 11.1.2053.2 | affected |
| ESET, spol. s r.o. | ESET Small Business Security | 0 <= 18.0.12.0 | affected |
| ESET, spol. s r.o. | ESET Safe Server | 0 <= 18.0.12.0 | affected |
| ESET, spol. s r.o. | ESET Server Security for Windows Server | 0 <= 11.1.12005.2 | affected |
| ESET, spol. s r.o. | ESET Mail Security for Microsoft Exchange Server | 0 <= 11.1.10008.0 | affected |
| ESET, spol. s r.o. | ESET Mail Security for Microsoft Exchange Server | 0 <= 11.0.10008.0 | affected |
| ESET, spol. s r.o. | ESET Mail Security for Microsoft Exchange Server | 0 <= 10.1.10014.0 | affected |
| ESET, spol. s r.o. | ESET Security for Microsoft SharePoint Server | 0 <= 11.1.15001.0 | affected |
| ESET, spol. s r.o. | ESET Security for Microsoft SharePoint Server | 0 <= 11.0.15004.0 | affected |
| ESET, spol. s r.o. | ESET Security for Microsoft SharePoint Server | 0 <= 10.0.15005.1 | affected |
Weaknesses
- CWE-427: CWE-427 Uncontrolled Search Path Element
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.