CVE-2025-5028: CWE-269 Improper Privilege Management in ESET, spol. s.r.o ESET NOD32 Antivirus
Severity: mediumType: vulnerabilityCVE-2025-5028
Installation file of ESET security products on Windows allow an attacker to misuse to delete an arbitrary file without having the permissions to do so.
CVE-2025-5028: CWE-269 Improper Privilege Management in ESET, spol. s.r.o ESET NOD32 Antivirus
Medium
Published: Fri Jul 11 2025 (07/11/2025, 06:40:28 UTC)
Source: CVE Database V5
Vendor/Project: ESET, spol. s.r.o
Product: ESET NOD32 Antivirus
Description
Installation file of ESET security products on Windows allow an attacker to misuse to delete an arbitrary file without having the permissions to do so.
Technical Details
- Data Version
- 5.1
- Assigner Short Name
- ESET
- Date Reserved
- 2025-05-21T09:28:16.965Z
- Cvss Version
- 4.0
- State
- PUBLISHED
Threat ID: 6870b32fa83201eaacacce9d
Added to database: 7/11/2025, 6:46:07 AM
Last updated: 7/11/2025, 6:46:07 AM
Views: 1
Related Threats
CVE-2025-30026: CWE-288: Authentication Bypass Using an Alternate Path or Channel in Axis Communications AB AXIS Camera Station Pro
MediumVulnerabilityFri Jul 11 2025
CVE-2025-30025: CWE-502 Deserialization of Untrusted Data in Axis Communications AB AXIS Device Manager
MediumVulnerabilityFri Jul 11 2025
CVE-2025-30024: CWE-295 Improper Certificate Validation in Axis Communications AB AXIS Device Manager
MediumVulnerabilityFri Jul 11 2025
CVE-2025-30023: CWE-502 Deserialization of Untrusted Data in Axis Communications AB AXIS Camera Station Pro
CriticalVulnerabilityFri Jul 11 2025
CVE-2025-7401: CWE-798 Use of Hard-coded Credentials in aa-team Premium Age Verification / Restriction for WordPress
CriticalVulnerabilityFri Jul 11 2025
Actions
Please log in to the Console to use AI analysis features.
External Links
Need enhanced features?
Contact root@offseq.com for Pro access with improved analysis and higher rate limits.