CVE-2019-16519

HIGH

ESET Cyber Security <6.7.900.0 - Command Injection

Title source: llm
STIX 2.1

Description

ESET Cyber Security 6.7.900.0 for macOS allows a local attacker to execute unauthorized commands as root by abusing an undocumented feature in scheduled tasks.

References (2)

Core 2
Core References
Vendor Advisory x_refsource_confirm
http://support.eset.com/ca7317/

Scores

CVSS v3 7.8
EPSS 0.0030
EPSS Percentile 21.6%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-269
Status published
Products (3)
eset/cyber_security < 6.7.900.0 (2 CPE variants)
eset/endpoint_antivirus < 6.7.900.0
eset/endpoint_security < 6.7.900.0
Published Oct 14, 2019
Tracked Since Feb 18, 2026