CVE-2025-32098

Published Sep 2, 2025

Last updated 7 months ago

CVSS medium 5.3

Overview

Description: An issue was discovered in Samsung Magician 6.3 through 8.3 on Windows. An attacker can achieve Elevation of Privileges to SYSTEM by exploiting insecure file delete operations during the update process.
Source: cve@mitre.org
NVD status: Analyzed
Products: magician

Risk scores

CVSS 3.1

Type: Secondary
Base score: 5.3
Impact score: 1.4
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Severity: MEDIUM

Weaknesses

134c704f-9b21-4f2e-91b3-4a467353bcc0: CWE-269

Hype score: Not currently trending

CVE-2025-32098 Samsung Magician 6.3-8.3 Local Privilege Escalation via Insecure Update Process https://t.co/9ej4ef6zNO
@VulmonFeeds
2 Sept 2025
144 Impressions
2 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes

Configurations

[
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:samsung:magician:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "E572D5FD-CDE9-45E3-BBF5-9334DE93F4E0",
            "versionEndIncluding": "8.3.0",
            "versionStartIncluding": "6.3.0",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      },
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA",
            "vulnerable": false
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

References

Sources include official advisories and independent security research.

Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

Related CVEs

References