Vulnerability Description
The vulnerability potentially allows an attacker to misuse ESET’s file operations during the module update to delete or move files without having proper permissions.
CVSS Score
7.8
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Eset | Endpoint Antivirus | - |
| Eset | Endpoint Security | - |
| Eset | Internet Security | - |
| Eset | Mail Security | - |
| Eset | Nod32 | - |
| Eset | Security | - |
| Eset | Server Security | - |
| Eset | Smart Security | - |
Related Weaknesses (CWE)
References
- https://support.eset.com/en/ca8466Vendor Advisory
- https://support.eset.com/en/ca8466Vendor Advisory
FAQ
What is CVE-2023-3160?
CVE-2023-3160 is a vulnerability with a CVSS score of 7.8 (HIGH). The vulnerability potentially allows an attacker to misuse ESET’s file operations during the module update to delete or move files without having proper permissions.
How severe is CVE-2023-3160?
CVE-2023-3160 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-3160?
Check the references section above for vendor advisories and patch information. Affected products include: Eset Endpoint Antivirus, Eset Endpoint Security, Eset Internet Security, Eset Mail Security, Eset Nod32.