Code injection vulnerability in Drive Explorer for macOS versions 3.5.4 and earlier allows an attacker who can login to the client where the affected product is installed to inject arbitrary code while processing the product execution. Since a full disk access privilege is required to execute LINE WORKS Drive Explorer, the attacker may be able to read and/or write to arbitrary files without the access privileges.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: jpcert
Published: 2023-05-23T00:00:00
Updated: 2024-08-02T11:39:06.539Z
Reserved: 2023-03-15T00:00:00
Link: CVE-2023-25953
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-05-23T02:15:09.317
Modified: 2024-11-21T07:50:30.607
Link: CVE-2023-25953
Redhat
No data.