Vulnerability Description: Denial-of-service vulnerability in ESET security products for Windows. CVE ID: CVE-2025-4952 CVSS Score: 6.8 CVSS Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N Affected Products: - ESET NOD32 Antivirus, ESET Internet Security, ESET Smart Security Premium, ESET Security Ultimate - ESET Small Business Security and ESET Safe Server - ESET Endpoint Antivirus and ESET Endpoint Security for Windows - ESET Server Security for Windows Server (formerly File Security for Microsoft Windows Server) - ESET Mail Security for Microsoft Exchange Server - ESET Mail Security for IBM Domino - ESET Security for Microsoft SharePoint Server - ESET File Security for Microsoft Azure Vulnerability Cause: Missing protection of registry entries against modifications via NtRestoreKey and NtReplaceKey Windows APIs. Solution: Fixed by an update of the HIPS support module. No action required from customers with regularly updated products.