Security Advisory
CVE-2025-53939
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Kiteworks is a private data network (PDN). Prior to version 9.1.0, improper input validation when managing roles of a shared folder could lead to unexpectedly elevate another users permissions on the share. This issue has been patched in version 9.1.0.