Hackers News Hackers News
  • CyberSecurity News
  • Threats
  • Attacks
  • Vulnerabilities
  • Breaches
  • Comparisons

Social Media

Hackers News Hackers News
  • CyberSecurity News
  • Threats
  • Attacks
  • Vulnerabilities
  • Breaches
  • Comparisons
Search the Site
Popular Searches:
technology Amazon AI
Recent Posts
PamStealer Mimics Maccy, Silently Harvests Data
July 4, 2026
Critical FatFs Vulnerabilities Expose Millions of Embedded Devices
July 4, 2026
Critical Linux Kernel Vulnerability CVE-2023-0179 Grants Root Access
July 4, 2026
Home/CyberSecurity News/WD Discovery Desktop App for Windows Vulnerability Enables Arbitrary Code Execution
CyberSecurity News

WD Discovery Desktop App for Windows Vulnerability Enables Arbitrary Code Execution

A serious security vulnerability has been disclosed in Western Digital’s WD Discovery desktop application. This flaw potentially allows attackers to execute arbitrary code on Windows systems. The...

Sarah simpson
Sarah simpson
January 27, 2026 2 Min Read
34 0

A serious security vulnerability has been disclosed in Western Digital’s WD Discovery desktop application. This flaw potentially allows attackers to execute arbitrary code on Windows systems.

The flaw, tracked as CVE-2025-30248, affects WD Discovery version 5.2.730 and all prior releases.

The security issue involves a DLL hijacking vulnerability within the WD Discovery installer. This type of attack exploits the way Windows searches for dynamic-link library (DLL) files when applications load.

Local attackers can place a malicious DLL file in the installer’s search path, which the legitimate application then loads and executes, granting the attacker full code execution capabilities on the target system.

Beyond the primary DLL Search Order Hijacking vulnerability, Western Digital also identified additional EXE and DLL hijacking issues specifically within the Tiny Installer component used by WD Discovery.

These multiple attack vectors compound the security risk for users running vulnerable versions. While the vulnerability requires local access to exploit, the consequences are severe.

Successful exploitation allows attackers to execute arbitrary code with the same privileges as the WD Discovery installer, potentially compromising the entire system.

The issue particularly affects organizations where multiple users share workstations or where physical security controls may be weaker.

Western Digital has classified the vulnerability with a CVSS 4.0 score of 8.9 (HIGH severity), reflecting the significant threat it poses to affected systems.

Western Digital released WD Discovery version 5.3 on December 19, 2025, which fully addresses all identified vulnerabilities.

Users will receive automatic update notifications through the application, prompting them to install the security patch.

Alternatively, users can manually download version 5.3 from the official WD Discovery Downloads page.

Western Digital acknowledges Kazuma Matsumoto, a security researcher at GMO Cybersecurity by IERAE, Inc., and David Silva for responsibly disclosing these vulnerabilities through coordinated disclosure processes.

Windows users running any version of WD Discovery before 5.3 should immediately update their installations to mitigate potential exploitation risks.

Disclaimer: HackersRadar reports on cybersecurity threats and incidents for informational and awareness purposes only. We do not engage in hacking activities, data exfiltration, or the hosting or distribution of stolen or leaked information. All content is based on publicly available sources.

Tags:

AttackCVECybersecurityExploitPatchSecurityThreatVulnerability

Share Article

Sarah simpson

Sarah simpson

Sarah is a cybersecurity journalist specializing in threat intelligence and malware analysis. With over 8 years of experience covering APT groups, zero-day exploits, and advanced persistent threats, Sarah brings deep technical expertise to breaking cybersecurity news. Previously, she worked as a security researcher at leading threat intelligence firms, where she analyzed malware samples and tracked cybercriminal operations. Sarah holds a Master's degree in Computer Science with a focus on cybersecurity and is a regular contributor to major security conferences.

Previous Post

Multiple Vulnerabilities in React Server Components Enable DoS Attacks

Next Post

Node.js 25.5.0 Released Update Root Certificates and New Command-Line Flags

No Comment! Be the first one.

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Popular Posts
Alibaba Bans Internal Use of Claude AI Over Backdoor Concerns
July 3, 2026
Apache ActiveMQ Critical Vulnerabilities Allow DoS Attacks, System Crashes
July 3, 2026
Scammers Impersonate Brands in Gambling Ads to Drive Casino Traffic
July 3, 2026
Top Authors
Marcus Rodriguez
Marcus Rodriguez
Jennifer sherman
Jennifer sherman
Emy Elsamnoudy
Emy Elsamnoudy
Let's Connect
156k
2.25m
285k

Related Posts

Jennifer sherman
By Jennifer sherman
Threats

GlassWorm Attacks macOS via Malicious VS Code…

January 1, 2026
Emy Elsamnoudy
By Emy Elsamnoudy
Attacks

ClickFix Attack Hides Malicious Code via Stegan Security

January 1, 2026
Sarah simpson
By Sarah simpson
Vulnerabilities

MongoBleed Detector Tool Released to Detect MongoDB Vulnerability(CVE-2025-14847)

January 1, 2026
Emy Elsamnoudy
By Emy Elsamnoudy
Breaches

Conti Ransomware Gang Leaders & Infrastructure Exposed

January 1, 2026
Hackers News Hackers News
  • [email protected]

Quick Links

  • Contact Us
  • Privacy Policy
  • Terms of service

Categories

Attacks
Breaches
Comparisons
CyberSecurity News
Threats
Vulnerabilities

Let's keep in touch

receive fresh updates and breaking cyber news every day and week!

All Rights Reserved by HackersRadar ©2026

Follow Us