Primary

Context

ESET Inspect Connector Local Privilege Escalation Vulnerability

Vulnerability

A local privilege escalation vulnerability exists in ESET Inspect Connector for Windows, versions through 2.8.5555. This vulnerability allows a low-privileged user to place a custom configuration file in a specific location. When ESET Inspect Connector is launched, it loads a malicious DLL file from this configuration file, executing it with SYSTEM permissions. This behavior results in unauthorized privilege escalation.

Impact

Exploitation of this vulnerability allows for local privilege escalation, with malicious code executed under the SYSTEM account.

Remediation

Users are advised to upgrade to ESET Inspect Connector version 3.0.5765 or later. The fixed version is available on the ESET website or through the ESET Repository.

Added: Jan 30, 2026, 1:18 PM

Updated: Jan 30, 2026, 1:18 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

0.0

relevance

2.6

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

0.0

relevance

2.6

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ESET Inspect Connector Local Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating