CVE-2020-10193

HIGH

Eset Cyber Security < 1294 - Interpretation Conflict

Title source: rule

Description

ESET Archive Support Module before 1294 allows virus-detection bypass via crafted RAR Compression Information in an archive. This affects versions before 1294 of Smart Security Premium, Internet Security, NOD32 Antivirus, Cyber Security Pro (macOS), Cyber Security (macOS), Mobile Security for Android, Smart TV Security, and NOD32 Antivirus 4 for Linux Desktop.

References (1)

[Third Party Advisory] https://blog.zoller.lu/p/from-low-hanging-fruit-department_13.html

Scores

CVSS v3 7.5

EPSS 0.0050

EPSS Percentile 65.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Details

CWE

CWE-436

Status published

Products (8)

eset/cyber_security < 1294

eset/internet_security < 1294

eset/mobile_security 1294

eset/mobile_security < 1294

eset/nod32_antivirus < 1294

eset/nod32_antivirus < 4

eset/smart_security < 1294

eset/smart_tv_security < 1294

Published Mar 06, 2020

Tracked Since Feb 18, 2026