CVE-2025-4952

MEDIUM

ESET - Info Disclosure

Title source: llm

Description

Tampering of the registry entries might have led to preventing the ESET security products from starting correctly on the next system startup or to unauthorized changes in the product's configuration.

References (1)

[Various Sources] https://support.eset.com/en/ca8853-eset-customer-advisory-denial-of-service-vulnerability-in-eset-security-products-for-windows-fixed

Scores

CVSS v4 6.8

EPSS 0.0002

EPSS Percentile 4.4%

CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-732

Status published

Products (13)

ESET/ESET Endpoint Antivirus 1496

ESET/ESET Endpoint Security for Windows 1496

ESET/ESET File Security for Microsoft Azure 1496

ESET/ESET Internet Security 1496

ESET/ESET Mail Security for IBM Domino 1496

ESET/ESET Mail Security for Microsoft Exchange Server 1496

ESET/ESET NOD32 Antivirus 1496

ESET/ESET Safe Server 1496

ESET/ESET Security for Microsoft SharePoint Server 1496

ESET/ESET Security Ultimate 1496

... and 3 more

Published Oct 31, 2025

Tracked Since Feb 18, 2026