CVE-2026-6423
ESET · ESET Inspect Connector
A local privilege escalation vulnerability in the ESET Inspect Connector allows an authenticated local user to gain higher privileges on the host system.
Executive summary
A local privilege escalation flaw in the ESET Inspect Connector enables authenticated users to gain elevated system privileges.
Vulnerability
This is an improper privilege management vulnerability (CWE-269) within the ESET Inspect Connector. It requires an attacker to have low-level local privileges to exploit the vulnerability, but it does not require additional user interaction.
Business impact
A successful exploit allows a local, low-privileged user to escalate their permissions to a higher level, potentially gaining full control over the affected Windows host. This undermines the security posture of the endpoint, allowing for the bypass of security restrictions and the potential exfiltration of sensitive data. The high CVSS score of 8.5 reflects the significant impact on host integrity.
Remediation
Immediate Action: Update the ESET Inspect Connector to the latest version, which contains the fix for this privilege management issue.
Proactive Monitoring: Review system logs for unauthorized attempts to access or modify protected processes or registry keys associated with ESET Inspect.
Compensating Controls: Apply the principle of least privilege to all local user accounts to minimize the potential impact of an escalation attempt.
Exploitation status
Public Exploit Available: No (no weaponized exploit confirmed).
Analyst recommendation
While this vulnerability requires local access, it represents a significant security risk for the integrity of managed endpoints. Organizations should prioritize patching the ESET Inspect Connector across all managed machines to prevent potential privilege escalation.