CVE-2025-4952

Summary

Tampering of the registry entries might have led to preventing the ESET security products from starting correctly on the next system startup or to unauthorized changes in the product's configuration.

Affected Software

VendorProductVersion RangeStatus
ESETESET NOD32 Antivirus1496unaffected
ESETESET Internet Security1496unaffected
ESETESET Smart Security Premium1496unaffected
ESETESET Security Ultimate1496unaffected
ESETESET Small Business Security1496unaffected
ESETESET Safe Server1496unaffected
ESETESET Endpoint Antivirus1496unaffected
ESETESET Endpoint Security for Windows1496unaffected
ESETESET Server Security for Windows Server1496unaffected
ESETESET Mail Security for Microsoft Exchange Server1496unaffected
ESETESET Mail Security for IBM Domino1496unaffected
ESETESET Security for Microsoft SharePoint Server1496unaffected
ESETESET File Security for Microsoft Azure1496unaffected

Weaknesses

  • CWE-732: CWE-732 Incorrect Permission Assignment for Critical Resource

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References