5.5

CVE-2020-26941

EPSS 0.03%
Published 26.01.2021 18:15:45
Last modified 21.11.2024 05:20:32
Source cve@mitre.org
Teams watchlist Login
Open Login

A local (authenticated) low-privileged user can exploit a behavior in an ESET installer to achieve arbitrary file overwrite (deletion) of any file via a symlink, due to insecure permissions. The possibility of exploiting this vulnerability is limited and can only take place during the installation phase of ESET products. Furthermore, exploitation can only succeed when Self-Defense is disabled. Affected products are: ESET NOD32 Antivirus, ESET Internet Security, ESET Smart Security, ESET Smart Security Premium versions 13.2 and lower; ESET Endpoint Antivirus, ESET Endpoint Security, ESET NOD32 Antivirus Business Edition, ESET Smart Security Business Edition versions 7.3 and lower; ESET File Security for Microsoft Windows Server, ESET Mail Security for Microsoft Exchange Server, ESET Mail Security for IBM Domino, ESET Security for Kerio, ESET Security for Microsoft SharePoint Server versions 7.2 and lower.

Affected products Warnungen 0 Metrics 3 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Eset ≫ Endpoint Antivirus SwPlatform- Version <= 7.3

Eset ≫ Endpoint Security Version <= 7.3

Eset ≫ File Security SwPlatformwindows_server Version <= 7.2

Eset ≫ Internet Security Version <= 13.2

Eset ≫ Internet Security Version1294

Eset ≫ Mail Security SwPlatformdomino Version <= 7.2

Eset ≫ Mail Security SwPlatformexchange_server Version <= 7.2

Eset ≫ Nod32 Antivirus SwEditionbusiness Version <= 7.3

Eset ≫ Nod32 Antivirus SwPlatform- Version <= 13.2

Eset ≫ Security SwPlatformkerio Version <= 7.2

Eset ≫ Security SwPlatformsharepoint_server Version <= 7.2

Eset ≫ Smart Security SwEditionbusiness Version <= 7.3

Eset ≫ Smart Security SwEdition- Version <= 13.2

Eset ≫ Smart Security SwEditionpremium Version <= 13.2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.03%	0.058

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
nvd@nist.gov	3.6	3.9	4.9	AV:L/AC:L/Au:N/C:N/I:P/A:P

CWE-276 Incorrect Default Permissions

During installation, installed file permissions are set to allow anyone to modify those files.

https://support.eset.com/en/ca7794-local-privilege-escalation-vulnerability-fixed-in-eset-products-for-windows

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2020-26941

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2020-26941

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2020-26941

EUVD