CVE-2024-5760

Published: Sep 11, 2024Modified: Sep 13, 2024

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

The Samsung Universal Print Driver for Windows is potentially vulnerable to escalation of privilege allowing the creation of a reverse shell in the tool. This is only applicable for products in the application released or manufactured before 2018.

Affected (1)

Products: Samsung: Universal Print Driver

Samsung

1 product

Universal Print Driver

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Samsung Universal Print Driver	Version 3.00.16.0101

Running on/with	Platform Versions
Microsoft Windows	All versions

Related CWEs

CWE-269

Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

References (1)

https://support.hp.com/us-en/document/ish_11159589-11159645-16/hpsbpi03970

Source: hp-security-alert@hp.com

Third Party Advisory

Timeline

No history available yet.