Vulnerabilities > Eset > Internet Security > 1294

DATE CVE VULNERABILITY TITLE RISK
2021-01-26 CVE-2020-26941 Incorrect Default Permissions vulnerability in Eset products
A local (authenticated) low-privileged user can exploit a behavior in an ESET installer to achieve arbitrary file overwrite (deletion) of any file via a symlink, due to insecure permissions.
local
low complexity
eset CWE-276
5.5
2020-02-18 CVE-2020-9264 Interpretation Conflict vulnerability in Eset products
ESET Archive Support Module before 1296 allows virus-detection bypass via a crafted Compression Information Field in a ZIP archive.
local
low complexity
eset CWE-436
5.5