Vulnerabilities > Eset > Smart Security > 7.3
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-01-26 | CVE-2020-26941 | Incorrect Default Permissions vulnerability in Eset products A local (authenticated) low-privileged user can exploit a behavior in an ESET installer to achieve arbitrary file overwrite (deletion) of any file via a symlink, due to insecure permissions. | 5.5 |
| 2020-03-05 | CVE-2020-10180 | Interpretation Conflict vulnerability in Eset products The ESET AV parsing engine allows virus-detection bypass via a crafted BZ2 Checksum field in an archive. | 9.8 |