Unrated severityNVD Advisory· Published Feb 9, 2022· Updated Sep 16, 2024

LPE in ESET products for Windows

CVE-2021-37852

Description

ESET products for Windows allows untrusted process to impersonate the client of a pipe, which can be leveraged by attacker to escalate privileges in the context of NT AUTHORITY\SYSTEM.

Affected products

Eset/Eset Mail Security For Ibm Dominov5
Range: 7.0.14008.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

support.eset.com/en/ca8223-local-privilege-escalation-vulnerability-fixed-in-eset-products-for-windowsmitrex_refsource_MISC
www.zerodayinitiative.com/advisories/ZDI-22-148/mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000