CVE-2025-13818 HIGH

CVE-2025-13818: Local privilege escalation in ESET Management Agent for Windows

Vendor Eset Spol S.r.o.
Product ESET Management Agent
Weakness CWE-367
Published February 6, 2026
Last update February 6, 2026

CVSS base score

8.3/10
Attack vector Local
Attack complexity Low
Privileges required High
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

What the vulnerability does

01Description

Local privilege escalation vulnerability via insecure temporary batch file execution in ESET Management Agent

Key dates

02Disclosure timeline

February 6, 2026 CVE published
February 6, 2026 Record updated