← back
CVE-2025-5028

Arbitrary file deletion vulnerability in ESET product installers

CVSS 6.8 MEDIUMEPSS 0.1%CWE-269
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 6.8EPSS 0.1%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
11 Jul 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Installation file of ESET security products on Windows allow an attacker to misuse to delete an arbitrary file without having the permissions to do so.
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
Affected products
ESET, spol. s.r.o · ESET Endpoint Antivirus for WindowsESET, spol. s.r.o · ESET Endpoint Security for WindowsESET, spol. s.r.o · ESET Internet SecurityESET, spol. s.r.o · ESET NOD32 AntivirusESET, spol. s.r.o · ESET Safe ServerESET, spol. s.r.o · ESET Security UltimateESET, spol. s.r.o · ESET Small Business SecurityESET, spol. s.r.o · ESET Smart Security Premium

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://support.eset.com/en/ca8838-arbitrary-file-deletion-vulnerability-in-eset-product-installers-on-windows-fixed