Use-After-Free Vulnerability in ESET Linux Security Products
CVE-2026-6424

6.7MEDIUM

What is CVE-2026-6424?

A use-after-free vulnerability in the ESET Linux products has been identified, which could potentially allow attackers to trigger a kernel panic on the affected systems. This issue poses a risk for users relying on ESET's security solutions for their Linux environments, emphasizing the need for prompt updates to the latest versions to mitigate this security concern.

Affected Version(s)

ESET Endpoint Antivirus for Linux Linux 13.1 <= 13.1.3.0

ESET Endpoint Antivirus for Linux Linux 13.0 <= 13.0.3.0

ESET Endpoint Antivirus for Linux Linux 12.2 <= 12.2.8.0

References

CVSS V4

Score:
6.7
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.