CVE-2025-30248

WD Discovery <5.2.730 - RCE

Title source: llm

Description

DLL hijacking in the WD Discovery Installer in Western Digital WD Discovery 5.2.730 on Windows allows a local attacker to execute arbitrary code via placement of a crafted dll in the installer's search path.

References (1)

[Various Sources] https://www.westerndigital.com/support/product-security/wdc-25008-wd-discovery-desktop-app-version-5-3

Scores

EPSS 0.0003

EPSS Percentile 8.0%

Classification

CWE

CWE-427

Status draft

Timeline

Published Jan 26, 2026

Tracked Since Feb 18, 2026