CVE-2025-5028 | THREATINT

Description

Installation file of ESET security products on Windows allow an attacker to misuse to delete an arbitrary file without having the permissions to do so.

PUBLISHED Reserved 2025-05-21 | Published 2025-07-11 | Updated 2025-07-11 | Assigner ESET

MEDIUM: 6.8CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

Problem types

CWE-269 Improper Privilege Management

Product status

Default status

unaffected

Any version

affected

Default status

unaffected

Any version

affected

Default status

unaffected

Any version

affected

Default status

unaffected

Any version

affected

Default status

unaffected

Any version

affected

Any version

affected

Default status

unaffected

Any version

affected

Any version

affected

Default status

unaffected

Any version

affected

Default status

unaffected

Any version

affected

References

support.eset.com/...eset-product-installers-on-windows-fixed

cve.org (CVE-2025-5028)

nvd.nist.gov (CVE-2025-5028)

Download JSON