← Back
2025-10-31 12:28CVE-2025-4952ESET
PUBLISHED5.2CWE-732

Denial-of-service vulnerability in ESET security products for Windows

Tampering of the registry entries might have led to preventing the ESET security products from starting correctly on the next system startup or to unauthorized changes in the product's configuration.

Problem type

Affected products

ESET

ESET NOD32 Antivirus

1496 - UNAFFECTED

ESET Internet Security

1496 - UNAFFECTED

ESET Smart Security Premium

1496 - UNAFFECTED

ESET Security Ultimate

1496 - UNAFFECTED

ESET Small Business Security

1496 - UNAFFECTED

ESET Safe Server

1496 - UNAFFECTED

ESET Endpoint Antivirus

1496 - UNAFFECTED

ESET Endpoint Security for Windows

1496 - UNAFFECTED

ESET Server Security for Windows Server

1496 - UNAFFECTED

ESET Mail Security for Microsoft Exchange Server

1496 - UNAFFECTED

ESET Mail Security for IBM Domino

1496 - UNAFFECTED

ESET Security for Microsoft SharePoint Server

1496 - UNAFFECTED

ESET File Security for Microsoft Azure

1496 - UNAFFECTED

References

support.eset.com

https://support.eset.com/en/ca8853-eset-customer-advisory-denial-of-service-vulnerability-in-eset-security-products-for-windows-fixed

GitHub Security Advisories

GHSA-m69p-r3h8-6wpr

Tampering of the registry entries might have led to preventing the ESET security products from...

https://github.com/advisories/GHSA-m69p-r3h8-6wpr

Tampering of the registry entries might have led to preventing the ESET security products from starting correctly on the next system startup or to unauthorized changes in the product's configuration.

nvd.nist.gov

https://nvd.nist.gov/vuln/detail/CVE-2025-4952

support.eset.com

https://support.eset.com/en/ca8853-eset-customer-advisory-denial-of-service-vulnerability-in-eset-security-products-for-windows-fixed

github.com

https://github.com/advisories/GHSA-m69p-r3h8-6wpr

JSON source

Click to expand
{
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "cveMetadata": {
    "cveId": "CVE-2025-4952",
    "assignerOrgId": "4a9b9929-2450-4021-b7b9-469a0255b215",
    "assignerShortName": "ESET",
    "dateUpdated": "2025-10-31T14:18:16.911Z",
    "dateReserved": "2025-05-19T10:36:38.958Z",
    "datePublished": "2025-10-31T12:28:15.267Z",
    "state": "PUBLISHED"
  },
  "containers": {
    "cna": {
      "providerMetadata": {
        "orgId": "4a9b9929-2450-4021-b7b9-469a0255b215",
        "shortName": "ESET",
        "dateUpdated": "2025-10-31T12:28:15.267Z"
      },
      "datePublic": "2025-08-22T10:00:00.000Z",
      "title": "Denial-of-service vulnerability in ESET security products for Windows",
      "descriptions": [
        {
          "lang": "en",
          "value": "Tampering of the registry entries might have led to preventing the ESET security products from starting correctly on the next system startup or to unauthorized changes in the product's configuration.",
          "supportingMedia": [
            {
              "type": "text/html",
              "base64": false,
              "value": "<span style=\"background-color: rgb(255, 255, 255);\">Tampering of the registry entries might have led to preventing the ESET security products from starting correctly on the next system startup or to unauthorized changes in the product's configuration.</span>"
            }
          ]
        }
      ],
      "affected": [
        {
          "vendor": "ESET",
          "product": "ESET NOD32 Antivirus",
          "modules": [
            "hips"
          ],
          "platforms": [
            "Windows"
          ],
          "defaultStatus": "unaffected",
          "versions": [
            {
              "version": "1496",
              "status": "unaffected",
              "versionType": "custom"
            }
          ]
        },
        {
          "vendor": "ESET",
          "product": "ESET Internet Security",
          "modules": [
            "HIPS support module"
          ],
          "defaultStatus": "unaffected",
          "versions": [
            {
              "version": "1496",
              "status": "unaffected"
            }
          ]
        },
        {
          "vendor": "ESET",
          "product": "ESET Smart Security Premium",
          "modules": [
            "HIPS support module"
          ],
          "defaultStatus": "unaffected",
          "versions": [
            {
              "version": "1496",
              "status": "unaffected"
            }
          ]
        },
        {
          "vendor": "ESET",
          "product": "ESET Security Ultimate",
          "modules": [
            "HIPS support module"
          ],
          "defaultStatus": "unaffected",
          "versions": [
            {
              "version": "1496",
              "status": "unaffected",
              "versionType": "custom"
            }
          ]
        },
        {
          "vendor": "ESET",
          "product": "ESET Small Business Security",
          "modules": [
            "HIPS support module"
          ],
          "defaultStatus": "unaffected",
          "versions": [
            {
              "version": "1496",
              "status": "unaffected",
              "versionType": "custom"
            }
          ]
        },
        {
          "vendor": "ESET",
          "product": "ESET Safe Server",
          "modules": [
            "HIPS support module"
          ],
          "defaultStatus": "unaffected",
          "versions": [
            {
              "version": "1496",
              "status": "unaffected",
              "versionType": "custom"
            }
          ]
        },
        {
          "vendor": "ESET",
          "product": "ESET Endpoint Antivirus",
          "modules": [
            "HIPS support module"
          ],
          "defaultStatus": "unaffected",
          "versions": [
            {
              "version": "1496",
              "status": "unaffected",
              "versionType": "custom"
            }
          ]
        },
        {
          "vendor": "ESET",
          "product": "ESET Endpoint Security for Windows",
          "modules": [
            "HIPS support module"
          ],
          "defaultStatus": "unaffected",
          "versions": [
            {
              "version": "1496",
              "status": "unaffected",
              "versionType": "custom"
            }
          ]
        },
        {
          "vendor": "ESET",
          "product": "ESET Server Security for Windows Server",
          "modules": [
            "HIPS support module"
          ],
          "defaultStatus": "unaffected",
          "versions": [
            {
              "version": "1496",
              "status": "unaffected",
              "versionType": "custom"
            }
          ]
        },
        {
          "vendor": "ESET",
          "product": "ESET Mail Security for Microsoft Exchange Server",
          "modules": [
            "HIPS support module"
          ],
          "defaultStatus": "unaffected",
          "versions": [
            {
              "version": "1496",
              "status": "unaffected",
              "versionType": "custom"
            }
          ]
        },
        {
          "vendor": "ESET",
          "product": "ESET Mail Security for IBM Domino",
          "modules": [
            "HIPS support module"
          ],
          "defaultStatus": "unaffected",
          "versions": [
            {
              "version": "1496",
              "status": "unaffected",
              "versionType": "custom"
            }
          ]
        },
        {
          "vendor": "ESET",
          "product": "ESET Security for Microsoft SharePoint Server",
          "modules": [
            "HIPS support module"
          ],
          "defaultStatus": "unaffected",
          "versions": [
            {
              "version": "1496",
              "status": "unaffected",
              "versionType": "custom"
            }
          ]
        },
        {
          "vendor": "ESET",
          "product": "ESET File Security for Microsoft Azure",
          "modules": [
            "HIPS support module"
          ],
          "defaultStatus": "unaffected",
          "versions": [
            {
              "version": "1496",
              "status": "unaffected",
              "versionType": "custom"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "lang": "en",
              "description": "CWE-732 Incorrect Permission Assignment for Critical Resource",
              "cweId": "CWE-732",
              "type": "CWE"
            }
          ]
        }
      ],
      "references": [
        {
          "url": "https://support.eset.com/en/ca8853-eset-customer-advisory-denial-of-service-vulnerability-in-eset-security-products-for-windows-fixed"
        }
      ],
      "impacts": [
        {
          "capecId": "CAPEC-203",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-203 Manipulate Registry Information"
            }
          ]
        }
      ],
      "metrics": [
        {
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ]
    },
    "adp": [
      {
        "providerMetadata": {
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP",
          "dateUpdated": "2025-10-31T14:18:16.911Z"
        },
        "title": "CISA ADP Vulnrichment",
        "metrics": [
          {}
        ]
      }
    ]
  }
}

Mitre source

https://cveawg.mitre.org/api/cve/CVE-2025-4952