HWDB A.I CyberSecurity Scoring
HWDB
Company Information
Website:https://http://www.hgst.com/
Employees number:3,898
Number of followers:36,202
NAICS:
Industry Type:Computer Hardware
Homepage:hgst.com
HWDB Risk Score (AI oriented)
Between 750 and 799
HWDBComputer Hardware
Updated:
29/03/2026
29/03/2026
762/1000
Fair
Baa
HWDB Global Score (TPRM)
xxxx
HWDBComputer Hardware
Score locked

HWDBFair
Current Score
762Baa (FAIR)
01000
1 incidents
-5 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
762
JUNE 2026
762
MAY 2026
762
APRIL 2026
762
MARCH 2026
761
FEBRUARY 2026
761
JANUARY 2026
761
DECEMBER 2025
766
Vulnerability
19 Dec 2025 • HWDB
Western Digital: WD Discovery Desktop App Vulnerability Allows Arbitrary Code Execution on Windows
Western Digital Patches Critical DLL Hijacking Flaw in WD Discovery for Windows
761
CRITICAL-5
HGS1769504226
Western Digital Patches Critical DLL Hijacking Flaw in WD Discovery for Windows
Western Digital has resolved a severe security vulnerability in its WD Discovery desktop application for Windows, which could have allowed attackers to execute arbitrary code on affected systems. The flaw, tracked as CVE-2025-30248, impacts all versions of WD Discovery prior to 5.3 and was patched in December 2025.
The vulnerability stems from a DLL search order hijacking issue combined with EXE and DLL hijacking in the application’s Tiny Installer component. By exploiting this flaw, attackers could manipulate the DLL loading process, forcing the application to load malicious libraries instead of legitimate system files. The weakness is classified under CWE-427 (Uncontrolled Search Path Element), a common issue in applications that load DLLs without specifying fully qualified paths.
Successful exploitation could enable attackers to execute code with the same privileges as the WD Discovery application, leading to unauthorized data access, malware installation, privilege escalation, or full system compromise. The attack requires user interaction, such as tricking victims into running a malicious installer or opening files from compromised directories potentially via phishing or social engineering.
Western Digital released WD Discovery version 5.3 on December 19, 2025, addressing both the DLL search order hijacking and Tiny Installer vulnerabilities. The update is available via automatic prompts, manual download from Western Digital’s official site, or the WD Discovery Online User Guide. The company credited security researchers Kazuma Matsumoto (GMO Cybersecurity by IERAE, Inc.) and David Silva for responsibly disclosing the flaws.
Users and organizations are advised to upgrade to version 5.3 or later to mitigate risks. Enterprise security teams should also monitor for unusual DLL loading behavior and enforce application whitelisting to prevent unauthorized code execution.
INCIDENT DETAILS -
TYPE
IMPACT
REFERENCES
NOVEMBER 2025
766
OCTOBER 2025
766
SEPTEMBER 2025
766
AUGUST 2025
766
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for HWDB ??
What was HWDB's A.I Rankiteo Cyber Score in June 2026 ??
What was HWDB's A.I Rankiteo Cyber Score in May 2026 ??
What was HWDB's A.I Rankiteo Cyber Score in April 2026 ??
What was HWDB's A.I Rankiteo Cyber Score in March 2026 ??
What was HWDB's A.I Rankiteo Cyber Score in February 2026 ??
What was HWDB's A.I Rankiteo Cyber Score in January 2026 ??
What was HWDB's A.I Rankiteo Cyber Score in December 2025 ??
What was HWDB's A.I Rankiteo Cyber Score in November 2025 ??
What was HWDB's A.I Rankiteo Cyber Score in October 2025 ??
What was HWDB's A.I Rankiteo Cyber Score in September 2025 ??
What was HWDB's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on HWDB's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with HWDB ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view HWDB's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?