CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-31952

An issue was discovered in Samsung Magician 8.0.0 on macOS. Because symlinks are used during the installation process, an attacker can escalate privileges via arbitrary file permission writes. (The attacker must already have user privileges, and an administrator password must be entered during the program installation stage for privilege escalation.)

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 24.9%

CVSS Severity

CVSS v3 Score 6.7

References

https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2024-31952/
https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2024-31952/

Products affected by CVE-2024-31952

Samsung » Magician » Version: 8.0.0

cpe:2.3:a:samsung:magician:8.0.0
Apple » Macos » Version: N/A

cpe:2.3:o:apple:macos:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-31952

Products

Pricing

Contact Us