CVE-2024-31954

EUVD-2024-29812
An issue was discovered in the installer in Samsung Portable SSD for T5 1.6.10 on Windows. Because it is possible to tamper with the directory and DLL files used during the installation process, an attacker can escalate privileges through arbitrary code execution. (An attacker must already have user privileges)
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.3 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
mitreCNA
7.3 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AC:L/AV:L/A:H/C:H/I:H/PR:L/S:U/UI:R
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 33%
Common Weakness Enumeration
References
https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2024-31954/
https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2024-31954/