CVE-2025-63685 — CRITICAL (9.8)

Vulnerability Description

Quark Cloud Drive v3.23.2 has a DLL Hijacking vulnerability. This vulnerability stems from the insecure loading of system libraries. Specifically, the application does not validate the path or signature of [regsvr32.exe] it loads. An attacker can place a crafted malicious DLL in the application's startup directory, which will be loaded and executed when the user launches the program.

CVSS Score

9.8

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Quark	Quark Cloud Drive	3.23.2

Related Weaknesses (CWE)

CWE-491

References

https://github.com/QIU-DIE/CVE/issues/5ExploitIssue TrackingThird Party Advisory

FAQ

What is CVE-2025-63685?

CVE-2025-63685 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Quark Cloud Drive v3.23.2 has a DLL Hijacking vulnerability. This vulnerability stems from the insecure loading of system libraries. Specifically, the application does not validate the path or signatu...

How severe is CVE-2025-63685?

CVE-2025-63685 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2025-63685?

Check the references section above for vendor advisories and patch information. Affected products include: Quark Quark Cloud Drive.