Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2023-7043

Unquoted service path in ESET products allows to

drop a prepared program to a specific location and run on boot with the

NT AUTHORITY\NetworkService permissions.

  • Published: Jan 31, 2024
  • Updated: Feb 10, 2024
  • CVE: CVE-2023-7043
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 5.5
  • AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

CWEs:

Software From Fixed in
eset / mail_security 10.1.10012.0 10.1.10012.0.x
eset / smart_security_premium 16.1.14.0 17.0.15.0
eset / internet_security 16.1.14.0 17.0.15.0
eset / nod32_antivirus 16.1.14.0 17.0.15.0
eset / endpoint_antivirus 10.1.2046.0 11.0.2032.0
eset / endpoint_security 10.1.2046.0 11.0.2032.0