CVE-2025-58322

Unknown Unknown - Not Provided

BaseFortify

Publication date: 2025-08-28

Last updated on: 2025-10-16

Assigner: Naver Corporation

Description

NAVER MYBOX Explorer for Windows before 3.0.8.133 allows a local attacker to escalate privileges to NT AUTHORITY\SYSTEM by invoking arbitrary DLLs due to improper privilege checks.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published

2025-08-28

Last Modified

2025-10-16

Generated

2026-06-16

AI Q&A

2025-08-28

EPSS Evaluated

2026-06-14

NVD

CVE-2025-58322

EUVD

EUVD-2025-28674

Affected Vendors & Products

Vendor	Product	Version / Range
navercorp	mybox	to 3.0.8.133 (exc)

Helpful Resources

Exploitability

CWE

KEV

CWE ID	Description
CWE-266	A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor.

Attack-Flow Graph

Executive Summary

This vulnerability in NAVER MYBOX Explorer for Windows versions before 3.0.8.133 allows a local attacker to escalate their privileges to NT AUTHORITY\SYSTEM by executing arbitrary commands due to improper privilege checks.

Impact Analysis

An attacker exploiting this vulnerability can gain the highest level of system privileges (NT AUTHORITY\SYSTEM), potentially allowing them to execute any command or access any part of the system, leading to full system compromise.

Hi! I’m here to help you understand CVE-2025-58322. Ask me anything about the vulnerability, its impact, or mitigation strategies.

0/70

CVE-2025-58322

BaseFortify

Description

CVSS Scores

EPSS Scores

Meta Information

Affected Vendors & Products

Helpful Resources

Exploitability

Attack-Flow Graph

AI Quick Actions

Chat Assistant

EPSS Chart