CVE-2025-57836

Description

An issue was discovered in Samsung Magician 6.3.0 through 8.3.2 on Windows. The installer creates a temporary folder with weak permissions during installation, allowing a non-admin user to perform DLL hijacking and escalate privileges.

References

https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-57836/

https://semiconductor.samsung.com/support/quality-support/product-security-updates/

Details

Source: Mitre, NVD

Risk Information

CVSS v2

CVSS v3

EPSS