NAVER MYBOX Explorer for Windows before 3.0.8.133 allows a local attacker to escalate privileges to NT AUTHORITY\SYSTEM by executing arbitrary files due to improper privilege checks.
Advisories
Source ID Title
EUVD EUVD EUVD-2025-28675 NAVER MYBOX Explorer for Windows before 3.0.8.133 allows a local attacker to escalate privileges to NT AUTHORITY\SYSTEM by executing arbitrary files due to improper privilege checks.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Thu, 16 Oct 2025 19:15:00 +0000

Type Values Removed Values Added
First Time appeared Navercorp
Navercorp mybox
CPEs cpe:2.3:a:navercorp:mybox:*:*:*:*:*:windows:*:*
Vendors & Products Navercorp
Navercorp mybox

Mon, 01 Sep 2025 09:15:00 +0000

Type Values Removed Values Added
First Time appeared Naver
Naver mybox Explorer
Vendors & Products Naver
Naver mybox Explorer

Fri, 29 Aug 2025 17:15:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 7.7, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Fri, 29 Aug 2025 02:30:00 +0000

Type Values Removed Values Added
Description NAVER MYBOX Explorer for Windows before 3.0.8.133 allows a local attacker to escalate privileges to NT AUTHORITY\SYSTEM by executing arbitrary files due to improper privilege checks.
Weaknesses CWE-266
References

cve-icon MITRE

Status: PUBLISHED

Assigner: naver

Published:

Updated: 2025-08-29T17:10:33.171Z

Reserved: 2025-08-28T08:44:18.809Z

Link: CVE-2025-58323

cve-icon Vulnrichment

Updated: 2025-08-29T17:09:39.473Z

cve-icon NVD

Status : Analyzed

Published: 2025-08-29T03:15:39.357

Modified: 2025-10-16T19:09:30.000

Link: CVE-2025-58323

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2025-09-01T09:02:55Z