Improper Privilege Control in Samsung Magician PC Software for Windows
CVE-2024-23769

7.3HIGH

Key Information:

Vendor: Samsung
Status: Magician
Vendor: CVE Published:; 7 February 2024

What is CVE-2024-23769?

The Samsung Magician PC Software version 8.0.0 has been identified with a vulnerability that involves improper privilege control over named pipes. This security flaw permits a local attacker to gain unauthorized access to sensitive and privileged data, potentially compromising system integrity. Users of the affected version are advised to take precautionary measures until an official patch or update is available.

References

https://semiconductor.samsung.com/support/quality-support...

CVSS V3.1

Score:

7.3

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 7, 2024
Vulnerability Reserved
Jan 22, 2024