Skip to main content

Magician

8 CVEs product

Monthly

CVE-2025-57836 HIGH This Week

An issue was discovered in Samsung Magician 6.3.0 through 8.3.2 on Windows. The installer creates a temporary folder with weak permissions during installation, allowing a non-admin user to perform DLL hijacking and escalate privileges. [CVSS 7.8 HIGH]

Samsung Windows Magician
NVD
CVSS 3.1
7.8
EPSS
0.0%
CVE-2025-32098 MEDIUM This Month

An issue was discovered in Samsung Magician 6.3 through 8.3 on Windows. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Samsung Microsoft Privilege Escalation Magician Windows
NVD
CVSS 3.1
5.3
EPSS
0.0%
CVE-2024-53921 LOW Monitor

An issue was discovered in the installer in Samsung Magician 8.1.0 on Windows. Rated low severity (CVSS 2.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Samsung Microsoft Magician
NVD
CVSS 3.1
2.8
EPSS
0.2%
CVE-2024-36071 MEDIUM This Month

Samsung Magician 8.0.0 on Windows allows an admin to escalate privileges by tampering with the directory and DLL files used during the installation process. Rated medium severity (CVSS 6.3). No vendor patch available.

Privilege Escalation Samsung Microsoft Magician
NVD
CVSS 3.1
6.3
EPSS
0.1%
CVE-2024-31953 MEDIUM This Month

An issue was discovered in Samsung Magician 8.0.0 on macOS. Rated medium severity (CVSS 6.7). No vendor patch available.

Privilege Escalation Apple RCE Samsung Magician
NVD
CVSS 3.1
6.7
EPSS
0.1%
CVE-2024-31952 MEDIUM This Month

An issue was discovered in Samsung Magician 8.0.0 on macOS. Rated medium severity (CVSS 6.7). No vendor patch available.

Privilege Escalation Apple Samsung Magician
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2024-23769 MEDIUM This Month

Improper privilege control for the named pipe in Samsung Magician PC Software 8.0.0 (for Windows) allows a local attacker to read privileged data. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Samsung Microsoft Magician
NVD
CVSS 3.1
5.5
EPSS
0.2%
CVE-2017-3218 HIGH This Week

Samsung Magician 5.0 fails to validate TLS certificates for HTTPS software update traffic. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Samsung Information Disclosure Magician
NVD
CVSS 3.0
8.8
EPSS
0.0%
EPSS 0% CVSS 7.8
HIGH This Week

An issue was discovered in Samsung Magician 6.3.0 through 8.3.2 on Windows. The installer creates a temporary folder with weak permissions during installation, allowing a non-admin user to perform DLL hijacking and escalate privileges. [CVSS 7.8 HIGH]

Samsung Windows Magician
NVD
EPSS 0% CVSS 5.3
MEDIUM This Month

An issue was discovered in Samsung Magician 6.3 through 8.3 on Windows. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Samsung Microsoft Privilege Escalation +2
NVD
EPSS 0% CVSS 2.8
LOW Monitor

An issue was discovered in the installer in Samsung Magician 8.1.0 on Windows. Rated low severity (CVSS 2.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Samsung Microsoft +1
NVD
EPSS 0% CVSS 6.3
MEDIUM This Month

Samsung Magician 8.0.0 on Windows allows an admin to escalate privileges by tampering with the directory and DLL files used during the installation process. Rated medium severity (CVSS 6.3). No vendor patch available.

Privilege Escalation Samsung Microsoft +1
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

An issue was discovered in Samsung Magician 8.0.0 on macOS. Rated medium severity (CVSS 6.7). No vendor patch available.

Privilege Escalation Apple RCE +2
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

An issue was discovered in Samsung Magician 8.0.0 on macOS. Rated medium severity (CVSS 6.7). No vendor patch available.

Privilege Escalation Apple Samsung +1
NVD
EPSS 0% CVSS 5.5
MEDIUM This Month

Improper privilege control for the named pipe in Samsung Magician PC Software 8.0.0 (for Windows) allows a local attacker to read privileged data. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Samsung Microsoft +1
NVD
EPSS 0% CVSS 8.8
HIGH This Week

Samsung Magician 5.0 fails to validate TLS certificates for HTTPS software update traffic. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Samsung Information Disclosure Magician
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy