cvedb.io
CVE-2023-25953
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2023-05-23T02:15:09.317 · Last modified 2026-06-17T05:42:21.063

Summary

Code injection vulnerability in Drive Explorer for macOS versions 3.5.4 and earlier allows an attacker who can login to the client where the affected product is installed to inject arbitrary code while processing the product execution. Since a full disk access privilege is required to execute LINE WORKS Drive Explorer, the attacker may be able to read and/or write to arbitrary files without the access privileges.

Affected products

worksmobile — drive_explorer

Does this affect you?

Add your gear to cvedb and we'll alert you only when worksmobile ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.