Endpoint security

This hub aggregates every CVE we track for Endpoint security, a product in the security products space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Endpoint security.

• CVE-2025-14963A vulnerability identified in the HX Agent driver file fekern.sys allowed a threat actor with local user access the ability to gain elevated system privileges. Utilization of a Bring Your Own Vuln...7.8Feb 24, 2026
• CVE-2025-5317Improper access restriction to critical folder in Bitdefender Endpoint Security Tools for Mac5.5Nov 11, 2025
• CVE-2023-46669Elastic Agent / Elastic Endpoint Security local API key disclosure6.2May 1, 2025
• CVE-2024-3779Denial of Service in ESET products for Windows6.1Jul 16, 2024
• CVE-2024-2224Privilege Escalation via the GravityZone productManager UpdateServer.KitsManager API (VA-11466)8.1Apr 9, 2024
• CVE-2024-2223 Incorrect Regular Expression in GravityZone Update Server (VA-11465)8.1Apr 9, 2024
• CVE-2024-0353Local privilege escalation in Windows products7.8Feb 15, 2024
• CVE-2023-7043Unquoted path privilege vulnerability in ESET products for Windows3.3Jan 31, 2024
• CVE-2024-0316Improper cleanup vulnerability in FireEye Endpoint Security6.8Jan 15, 2024
• CVE-2023-5594Improper following of a certificate's chain of trust in ESET security products7.5Dec 21, 2023
• CVE-2023-28134Local Privliege Escalation in Check Point Endpoint Security Remediation Service7.8Nov 12, 2023
• CVE-2023-3665 A code injection vulnerability in Trellix ENS 10.7.0 April 2023 release and earlier, allowed a local user to disable the ENS AMSI component via environment variables, leading to denial of service ...5.5Oct 4, 2023
• CVE-2023-3160Local privilege escalation in security products for Windows7.8Aug 14, 2023
• CVE-2023-28133Local privilege escalation in Check Point Endpoint Security Client (version E87.30) via crafted OpenSSL configuration file7.8Jul 23, 2023
• CVE-2023-35800Stormshield Endpoint Security Evolution 2.0.0 through 2.4.2 has Insecure Permissions. An ACL entry on the SES Evolution agent directory that contains the agent logs displayed in the GUI allows inte...4.3Jun 27, 2023