ESET Patches Privilege Escalation Vulnerabilities in Windows, macOS Products

ESET has released patches for two local privilege escalation vulnerabilities in security products for Windows and macOS.

ESET on Friday announced patches for two local privilege escalation vulnerabilities affecting multiple Windows and macOS products.

The Windows products, the company warns in an advisory, were found vulnerable to CVE-2024-7400, a high-severity bug affecting the file operations handling during the removal of a detected file.

An attacker with low privileges on a system running an affected ESET product could exploit the flaw to delete arbitrary files and escalate privileges.

“ESET fixed the issue in the Cleaner module 1251, which was distributed automatically to ESET customers along with Detection engine updates. No action stemming from this advisory is required to be taken by ESET customers,” the company says.

ESET notes that the security defect impacts multiple end-user and enterprise products, including antivirus, internet security, and server security solutions.

The patched Cleaner module was ...