CVE-2025-9267
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-09-26

Last updated on: 2025-09-29

Assigner: Seagate Technology

Description
In Seagate Toolkit on Windows a vulnerability exists in the Toolkit Installer prior to versions 2.35.0.6 where it attempts to load DLLs from the current working directory without validating their origin or integrity. This behavior can be exploited by placing a malicious DLL in the same directory as the installer executable, leading to arbitrary code execution with the privileges of the user running the installer. The issue stems from the use of insecure DLL loading practices, such as relying on relative paths or failing to specify fully qualified paths when invoking system libraries.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-09-26
Last Modified
2025-09-29
Generated
2026-06-16
AI Q&A
2025-09-26
EPSS Evaluated
2026-06-14
NVD
CVE-2025-9267
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
seagate seagate_toolkit *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-427 The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors.
CWE-426 The product searches for critical resources using an externally-supplied search path that can point to resources that are not under the product's direct control.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in the Seagate Toolkit Installer on Windows versions prior to 2.35.0.6. The installer attempts to load DLL files from the current working directory without verifying their origin or integrity. An attacker can exploit this by placing a malicious DLL in the same directory as the installer executable, causing the installer to load and execute the malicious code with the privileges of the user running the installer. The root cause is insecure DLL loading practices, such as using relative paths or not specifying fully qualified paths for system libraries.

Impact Analysis

This vulnerability can lead to arbitrary code execution with the privileges of the user running the installer. If exploited, an attacker could execute malicious code on the affected system, potentially leading to unauthorized actions, data compromise, or system manipulation depending on the user's privileges.

Mitigation Strategies

To mitigate this vulnerability, update the Seagate Toolkit Installer to version 2.35.0.6 or later. Avoid running the installer from directories that may contain untrusted DLLs. Ensure that the installer is executed from a trusted location and consider running it with the least privileges necessary to reduce risk.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-9267. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart