Vulnerability Details CVE-2025-57836
An issue was discovered in Samsung Magician 6.3.0 through 8.3.2 on Windows. The installer creates a temporary folder with weak permissions during installation, allowing a non-admin user to perform DLL hijacking and escalate privileges.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 0.9%
CVSS Severity
CVSS v3 Score 7.8
References
Products affected by CVE-2025-57836
-
cpe:2.3:a:samsung:magician:6.3.0
-
cpe:2.3:a:samsung:magician:8.0.0
-
cpe:2.3:a:samsung:magician:8.1.0
-
cpe:2.3:a:samsung:magician:8.2.0
-
cpe:2.3:a:samsung:magician:8.3.0
-
cpe:2.3:o:microsoft:windows:-