CVE-2025-13176

Published Jan 30, 2026

Last updated 20 days ago

CVSS high 8.4
ESET Inspect Connector

Overview

AI description

Automated description summarized from trusted sources.

CVE-2025-13176 is a DLL injection vulnerability found in ESET Inspect Connector for Windows. This flaw allows a local attacker to exploit improper privilege management by planting a custom configuration file. This configuration file can then enable the loading of a malicious DLL. The vulnerability stems from the application's handling of configuration files, specifically its failure to properly validate or restrict modifications that control DLL loading behavior. An attacker with local access and low-level privileges can create or modify a configuration file to point to a malicious DLL, which the application subsequently loads with elevated privileges.

Description
Planting a custom configuration file in ESET Inspect Connector allow load a malicious DLL.
Source
security@eset.com
NVD status
Awaiting Analysis

Risk scores

CVSS 4.0

Type
Secondary
Base score
8.4
Impact score
-
Exploitability score
-
Vector string
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Severity
HIGH

Weaknesses

security@eset.com
CWE-269

Social media

Hype score
Not currently trending

  1. 🚨 CVE-2025-13176 - Vulnérabilité d’élévation de privilèges dans ESET Inspect Connector (EDR) : un utilisateur local non privilégié peut privesc via le chargement d’une DLL dans le processus SYSTEM. Mise à jour vers la version corrigée (≥ 3.0.5765) https://t.co/

    @Guardia_School

    21 Feb 2026

    49 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. CVE-2025-13176

    @kuulte

    19 Feb 2026

    40 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. #exploit 1⃣ CVE-2026-25903: https://t.co/zAqWo3Jn8S Apache NiFi: Missing Authorization of Restricted Permissions for Component Updates 2⃣ CVE-2025-13176: https://t.co/YuiQcW3fVw LPE in ESET Inspect EDR 3⃣ From BRICKSTORM to GRIMBOLT: https://t.co/HIEinVDQ4w UNC6201 Explo

    @ksg93rd

    19 Feb 2026

    143 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  4. Top 5 Trending CVEs: 1 - CVE-2023-6318 2 - CVE-2026-23101 3 - CVE-2025-13176 4 - CVE-2026-20817 5 - CVE-2026-22769 #cve #cvetrends #cveshield #cybersecurity https://t.co/4Fua3CAN6W

    @CVEShield

    19 Feb 2026

    9 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  5. CVE-2025-13176: Local Privilege Escalation in ESET Inspect EDR LPE vulnerability in the ESET Inspect Connector for Windows (versions prior to 3.0.5765) due to the ElConnector.exe process (running as SYSTEM) attempting to load an OpenSSL configuration file from a non-existent htt

    @co11ateral

    18 Feb 2026

    3311 Impressions

    16 Retweets

    63 Likes

    30 Bookmarks

    0 Replies

    0 Quotes

  6. Need a SYSTEM shell? Just ask your EDR! CVE-2025-13176: ESET Inspect Connector looks for an OpenSSL config in a user-writable path. It’s an easy LPE that loads your payload directly into the EDR process. by @p0w1_ https://t.co/SutubkKYEW

    @InfoGuard_Labs

    17 Feb 2026

    4924 Impressions

    22 Retweets

    79 Likes

    47 Bookmarks

    1 Reply

    1 Quote

  7. Need a SYSTEM shell? Just ask your EDR! CVE-2025-13176: ESET Inspect Connector looks for an OpenSSL config in a user-writable path. It’s an easy LPE that loads your payload directly into the EDR process. by @p0w1_: https://t.co/SutubkKYEW

    @InfoGuard_Labs

    17 Feb 2026

    29 Impressions

    1 Retweet

    0 Likes

    1 Bookmark

    0 Replies

    0 Quotes

  8. Need a SYSTEM shell? Just ask your EDR! CVE-2025-13176: ESET Inspect Connector looks for an OpenSSL config in a user-writable path. It’s an easy LPE that loads your payload directly into the EDR process. by @p0w1_: https://t.co/SutubkKYEW

    @InfoGuard_Labs

    17 Feb 2026

    12 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  9. ⚠️ Vulnerabilidad en productos ESET ❗ CVE-2025-13176 ➡️ Más info: https://t.co/77CT2nLrZd https://t.co/KDKxR9eZYe

    @CERTpy

    5 Feb 2026

    104 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  10. CVE-2025-13176 [CA8910] ESET Customer Advisory: Local privilege escalation vulnerability fixed in ESET Inspect Connector for Windows https://t.co/T2Sr16fXPQ

    @autumn_good_35

    2 Feb 2026

    555 Impressions

    0 Retweets

    1 Like

    1 Bookmark

    0 Replies

    0 Quotes

  11. CVE-2025-13176 Planting a custom configuration file in ESET Inspect Connector allow load a malicious DLL. https://t.co/JBjOeELEzw

    @CVEnew

    30 Jan 2026

    218 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

References

Sources include official advisories and independent security research.