Primary

Context

ESET Management Agent Local Privilege Escalation Vulnerability

Vulnerability

A local privilege escalation vulnerability has been identified in ESET Management Agent for Windows, specifically in versions through 12.5.2104.0. This vulnerability arises from insecure temporary batch file execution, which allows an attacker with local Administrator rights to manipulate file operations during command execution. By altering these temporary files, the attacker can escalate privileges and execute code under the SYSTEM account.

Impact

Exploitation of this vulnerability allows for local privilege escalation, enabling an attacker to execute code with SYSTEM privileges.

Remediation

ESET has released a patched version of the ESET Management Agent. Users are advised to upgrade to version 13.0.1400.0 or newer. For new installations, the latest installers should be downloaded from the ESET website or the ESET repository.

Added: Feb 6, 2026, 2:21 PM

Updated: Feb 6, 2026, 3:17 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

2.4

remediation

0.0

relevance

2.8

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

2.4

remediation

0.0

relevance

2.8

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ESET Management Agent Local Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating