Vulnerabilities > Eset > Smart Security > 7.3

DATE CVE VULNERABILITY TITLE RISK
2021-01-26 CVE-2020-26941 Incorrect Default Permissions vulnerability in Eset products
A local (authenticated) low-privileged user can exploit a behavior in an ESET installer to achieve arbitrary file overwrite (deletion) of any file via a symlink, due to insecure permissions.
local
low complexity
eset CWE-276
5.5
2020-03-05 CVE-2020-10180 Interpretation Conflict vulnerability in Eset products
The ESET AV parsing engine allows virus-detection bypass via a crafted BZ2 Checksum field in an archive.
network
low complexity
eset CWE-436
critical
9.8