6 matches found
PT-2025-38260
Name of the Vulnerable Software and Affected Versions Dragonfly versions prior to 2.1.0 Description Dragonfly2 uses the os.MkdirAll function to create directory paths with specific access permissions. This function does not perform permission checks if a directory path already exists, allowing a...
CVE-2024-36071
Samsung Magician 8.0.0 on Windows allows an admin to escalate privileges by tampering with the directory and DLL files used during the installation process. This occurs because of an Untrusted Search Path...
CVE-2024-36071
Samsung Magician 8.0.0 on Windows allows an admin to escalate privileges by tampering with the directory and DLL files used during the installation process. This occurs because of an Untrusted Search Path...
CVE-2024-36071
Samsung Magician 8.0.0 on Windows allows an admin to escalate privileges by tampering with the directory and DLL files used during the installation process. This occurs because of an Untrusted Search Path...
CVE-2024-31954
CVE-2024-31954 affects the Samsung Portable SSD for T5 installer on Windows (version 1.6.10). The root cause is tampering with the installation directory and DLLs, enabling an attacker who already has user privileges to achieve arbitrary code execution and privilege escalation. The available sour...
CVE-2024-31953
Samsung Magician 8.0.0 on macOS is affected by a local privilege escalation vulnerability due to tampering with directories and executables used during installation, allowing arbitrary code execution after the attacker already has user privileges and an administrator password is entered during in...