CVE-2019-19792 — Incorrect Default Permissions in Cyber Security

CWE-276 — Incorrect Default Permissions3 documents3 sources
Severity
6.7MEDIUMNVD
EPSS
0.1%
top 73.32%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Eset Cyber Security
Timeline
PublishedMar 3
Latest updateMay 24

Description

A permissions issue in ESET Cyber Security before 6.8.300.0 for macOS allows a local attacker to escalate privileges by appending data to root-owned files.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 0.8 | Impact: 5.9

Affected Packages1 packages

â–¶NVDeset/cyber_security< 6.8.300.0

🔴Vulnerability Details

2
GHSA
GHSA-hhjr-6r38-mjch: A permissions issue in ESET Cyber Security before 6↗2022-05-24
â–¶
CVEList
CVE-2019-19792: A permissions issue in ESET Cyber Security before 6↗2020-03-03
â–¶
CVE-2019-19792 — Incorrect Default Permissions | cvebase