Security Advisory

CVE-2025-57699

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-08-22 06:37:41

Last updated 2025-08-22 10:48:56

Assigner jpcert

State PUBLISHED

Description

Western Digital Kitfox for Windows provided by Western Digital Corporation registers a Windows service with an unquoted file path. A user with the write permission on the root directory of the system drive may execute arbitrary code with the SYSTEM privilege.

← Browse all CVEs View on cve.org ↗