Improper Privilege Control in Samsung Magician PC Software for Windows
CVE-2024-23769

5.5MEDIUM

Key Information:

Vendor: Samsung
Status: Magician
Vendor: CVE Published:; 7 February 2024

Summary

The Samsung Magician PC Software version 8.0.0 has been identified with a vulnerability that involves improper privilege control over named pipes. This security flaw permits a local attacker to gain unauthorized access to sensitive and privileged data, potentially compromising system integrity. Users of the affected version are advised to take precautionary measures until an official patch or update is available.

References

https://semiconductor.samsung.com/support/quality-support...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Feb 7, 2024
Vulnerability Reserved
Jan 22, 2024