Samsung Magician Privilege Escalation Vulnerability via DLL Hijacking

Vulnerability

A vulnerability exists in the Samsung Magician application, specifically in versions 6.3.0 through 8.3.2, for Windows. During installation, the Magician installer creates a temporary folder with inadequate permissions. This flaw allows non-administrative users to execute DLL hijacking, leading to unauthorized privilege escalation.

Impact

Exploitation of this vulnerability allows for unauthorized privilege escalation by enabling DLL hijacking.

Added: Jan 5, 2026, 5:21 PM

Updated: Jan 5, 2026, 10:39 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

10.0

exploitability

3.3

remediation

0.0

relevance

1.9

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

10.0

exploitability

3.3

remediation

0.0

relevance

1.9

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Samsung Magician Privilege Escalation Vulnerability via DLL Hijacking

Vulnerability

Impact

Affected Products

Samsung Magician

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating