CVE-2023-25953

CRITICAL 9.0

CVSS Score

9.0

EPSS Score

0.0%

EPSS Percentile

0th

Code injection vulnerability in Drive Explorer for macOS versions 3.5.4 and earlier allows an attacker who can login to the client where the affected product is installed to inject arbitrary code while processing the product execution. Since a full disk access privilege is required to execute LINE WORKS Drive Explorer, the attacker may be able to read and/or write to arbitrary files without the access privileges.

Vendor	works mobile japan corp.
Product	drive explorer for macos
Published	May 23, 2023
Last Updated	Jan 17, 2025

Stay Ahead of the Next One

Get instant alerts for works mobile japan corp. drive explorer for macos

Be the first to know when new critical vulnerabilities affecting works mobile japan corp. drive explorer for macos are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

WORKS MOBILE Japan Corp. / Drive Explorer for macOS

versions 3.5.4 and earlier

References

NVD ↗ CVE.org ↗ EPSS Data ↗

line.worksmobile.com: https://line.worksmobile.com/jp/release-notes/20230216/ jvn.jp: https://jvn.jp/en/jp/JVN01937209/