CVE-2020-7811

MEDIUM

Samsung Update <3.0.32.0 - Privilege Escalation

Title source: llm

Description

Samsung Update 3.0.2.0 ~ 3.0.32.0 has a vulnerability that allows privilege escalation as commands crafted by attacker are executed while the engine deserializes the data received during inter-process communication

References (1)

[Third Party Advisory] https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35708

Scores

CVSS v3 6.2

EPSS 0.0004

EPSS Percentile 13.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Classification

CWE

CWE-502

Status published

Affected Products (1)

samsung/update < 3.0.32.0

Timeline

Published Oct 12, 2020

Tracked Since Feb 18, 2026