Browse all 4 CVE security advisories affecting ESET, spol. s.r.o. AI-powered Chinese analysis, POCs, and references for each vulnerability.
ESET, spol. s.r.o develops cybersecurity solutions, primarily antivirus and endpoint protection software, for consumers and enterprises. Historically, their vulnerabilities have commonly included remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws, often stemming from input validation issues or improper access controls. The company maintains a focus on proactive threat detection and low system resource usage, though it has faced scrutiny for occasional vulnerabilities in its products. While no major security incidents have been widely reported, the presence of four CVEs on record indicates ongoing challenges in maintaining security across their software portfolio.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-3716 | User enumeration in ESET Protect (on-prem) — ESET Protect (on-prem)CWE-204 | 4.3 | - | 2026-03-30 |
| CVE-2025-13176 | Local privilege escalation in ESET Inspect Connector for Windows — ESET Inspect ConnectorCWE-269 | 7.8AI | HighAI | 2026-01-30 |
| CVE-2025-2425 | TOCTOU race condition vulnerability in ESET products on Windows — ESET NOD32 AntivirusCWE-367 | 5.1 | - | 2025-07-18 |
| CVE-2025-5028 | Arbitrary file deletion vulnerability in ESET product installers — ESET NOD32 AntivirusCWE-269 | 7.1AI | HighAI | 2025-07-11 |
This page lists every published CVE security advisory associated with ESET, spol. s.r.o. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.