CNNVD-202601-856 Information
CNNVD ID
CNNVD-202601-856
Related CVE
- CNNVD Published: 2026-01-05
Description (Chinese)
SAMSUNG Magician是韩国三星(SAMSUNG)公司的一款应用程序。旨在帮助管理 Samsung SSD。 SAMSUNG Magician 6.3.0版本至8.3.2版本存在安全漏洞,该漏洞源于安装程序创建临时文件夹时权限设置不当,可能导致DLL劫持和权限提升。
Description (English)
SAMSUNG Magician is an application of the Korea Samsung Corporation. To help manage Samsung SSD. There is a security loophole in the SAMSUNG Magician versions 6.3.0 to 8.3.2, which stems from the inappropriate set-up of privileges when the installation program created the temporary folder, which could lead to DLL hijackings and enhanced privileges.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
三星
Published
2026-01-05
Last Modified
2026-02-24
References
https://semiconductor.samsung.com/support/quality-support/product-security-updates/ https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-57836/ https://access.redhat.com/security/cve/cve-2025-57836
Patch
https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-57836/
Share on: