CVE-2024-53921

An issue was discovered in the installer in Samsung Magician 8.1.0 on Windows. An attacker can create arbitrary folders in the system permission directory via a symbolic link during the installation process.

CVSS v3.0 2.8 LOW

2.8^/10

CVSS v3.0 : LOW

V3 Legend

Vector :

Exploitability : 1.3 / Impact : 1.4

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction REQUIRED

Confidentiality Impact NONE

Integrity Impact LOW

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://semiconductor.samsung.com/support/quality-support/product-security-updates/	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:a:samsung:magician:8.1.0:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

History

03 Jun 2025, 16:34

Type	Values Removed	Values Added
CPE		cpe:2.3:a:samsung:magician:8.1.0:::::::* cpe:2.3:o:microsoft:windows:-:::::::*
First Time		Microsoft Samsung magician Samsung Microsoft windows
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 2.8
References	~~() https://semiconductor.samsung.com/support/quality-support/product-security-updates/ -~~	() https://semiconductor.samsung.com/support/quality-support/product-security-updates/ - Vendor Advisory

03 Dec 2024, 20:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-12-03 19:15

Updated : 2025-06-03 16:34

NVD link : CVE-2024-53921

Mitre link : CVE-2024-53921

JSON object : View

Products Affected

samsung

magician

microsoft

windows

CWE

No CWE.

2.8 /10