Samsung Magician vulnerabilities

CVE-2025-57836 [HIGH] CWE-427 CVE-2025-57836: An issue was discovered in Samsung Magician 6.3.0 through 8.3.2 on Windows. The installer creates a An issue was discovered in Samsung Magician 6.3.0 through 8.3.2 on Windows. The installer creates a temporary folder with weak permissions during installation, allowing a non-admin user to perform DLL hijacking and escalate privileges.

CVE-2025-32098 [MEDIUM] CWE-269 CVE-2025-32098: An issue was discovered in Samsung Magician 6.3 through 8.3 on Windows. An attacker can achieve Elev An issue was discovered in Samsung Magician 6.3 through 8.3 on Windows. An attacker can achieve Elevation of Privileges to SYSTEM by exploiting insecure file delete operations during the update process.

CVE-2024-53921 [LOW] CWE-276 CVE-2024-53921: An issue was discovered in the installer in Samsung Magician 8.1.0 on Windows. An attacker can creat An issue was discovered in the installer in Samsung Magician 8.1.0 on Windows. An attacker can create arbitrary folders in the system permission directory via a symbolic link during the installation process.

CVE-2024-36071 [MEDIUM] CWE-426 CVE-2024-36071: Samsung Magician 8.0.0 on Windows allows an admin to escalate privileges by tampering with the direc Samsung Magician 8.0.0 on Windows allows an admin to escalate privileges by tampering with the directory and DLL files used during the installation process. This occurs because of an Untrusted Search Path.

CVE-2024-31953 [MEDIUM] CWE-269 CVE-2024-31953: An issue was discovered in Samsung Magician 8.0.0 on macOS. Because it is possible to tamper with th An issue was discovered in Samsung Magician 8.0.0 on macOS. Because it is possible to tamper with the directory and executable files used during the installation process, an attacker can escalate privileges through arbitrary code execution. (The attacker must already have user privileges, and an administrator password must be entered during the prog

CVE-2024-31952 [MEDIUM] CWE-59 CVE-2024-31952: An issue was discovered in Samsung Magician 8.0.0 on macOS. Because symlinks are used during the ins An issue was discovered in Samsung Magician 8.0.0 on macOS. Because symlinks are used during the installation process, an attacker can escalate privileges via arbitrary file permission writes. (The attacker must already have user privileges, and an administrator password must be entered during the program installation stage for privilege escalation.)

CVE-2024-23769 [HIGH] CVE-2024-23769: Improper privilege control for the named pipe in Samsung Magician PC Software 8.0.0 (for Windows) al Improper privilege control for the named pipe in Samsung Magician PC Software 8.0.0 (for Windows) allows a local attacker to read privileged data.

CVE-2017-3218 [HIGH] CWE-295 CVE-2017-3218: Samsung Magician 5.0 fails to validate TLS certificates for HTTPS software update traffic. Prior to Samsung Magician 5.0 fails to validate TLS certificates for HTTPS software update traffic. Prior to version 5.0, Samsung Magician uses HTTP for software updates.