121 matches found
CVE-2025-54447
Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0...
CVE-2025-54447
Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0...
CVE-2025-54446
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Samsung Electronics MagicINFO 9 Server allows Upload a Web Shell to a Web Server.This issue affects MagicINFO 9 Server: less than 21.1080.0...
CVE-2025-54446
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Samsung Electronics MagicINFO 9 Server allows Upload a Web Shell to a Web Server.This issue affects MagicINFO 9 Server: less than 21.1080.0...
CVE-2025-54446
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Samsung Electronics MagicINFO 9 Server allows Upload a Web Shell to a Web Server.This issue affects MagicINFO 9 Server: less than 21.1080.0...
CVE-2025-54445
Improper Restriction of XML External Entity Reference vulnerability in Samsung Electronics MagicINFO 9 Server allows Server Side Request Forgery.This issue affects MagicINFO 9 Server: less than 21.1080.0...
CVE-2025-54445
Samsung MagicINFO 9 Server is affected by CVE-2025-54445: an improper restriction of XML External Entity (XXE) references leading to Server-Side Request Forgery and potential information disclosure. Affected versions are MagicINFO 9 Server older than 21.1080.0. Public advisories describe exploita...
CVE-2025-54445
Improper Restriction of XML External Entity Reference vulnerability in Samsung Electronics MagicINFO 9 Server allows Server Side Request Forgery.This issue affects MagicINFO 9 Server: less than 21.1080.0...
CVE-2025-54448
CVE-2025-54448 affects Samsung Electronics MagicINFO 9 Server. The vulnerability is an unrestricted upload of files with dangerous types in MagicINFO 9 Server, enabling code injection. Technical details across sources indicate affected software is MagicINFO 9 Server, with versions prior to 21.108...
CVE-2025-54448
Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0...
CVE-2025-54452
Samsung MagicINFO 9 Server is affected by an improper authentication vulnerability that allows authentication bypass, specifically in the ServletAuthenticationProcessingFilter component. Affected versions are MagicINFO 9 Server prior to 21.1080.0. The issue has been discussed in multiple sources ...
CVE-2025-54452
Improper Authentication vulnerability in Samsung Electronics MagicINFO 9 Server allows Authentication Bypass.This issue affects MagicINFO 9 Server: less than 21.1080.0...
CVE-2025-54451
Improper Control of Generation of Code 'Code Injection' vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0...
CVE-2025-54451
Samsung MagicINFO 9 Server is affected by CVE-2025-54451 due to improper control of code generation, with public sources indicating a code injection/remote code execution risk through deserialization in the RMI service. Affected versions are MagicINFO 9 Server older than 21.1080.0. Public advisor...
CVE-2025-54451
Improper Control of Generation of Code 'Code Injection' vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0...
CVE-2025-54450
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0...
CVE-2025-54449
Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0...
CVE-2025-54455
Use of Hard-coded Credentials vulnerability in Samsung Electronics MagicINFO 9 Server allows Authentication Bypass.This issue affects MagicINFO 9 Server: less than 21.1080.0...
CVE-2025-54455
Samsung MagicINFO 9 Server is affected by a hard-coded credentials vulnerability that enables authentication bypass. The issue exists in PremiumClientService/related components and is exploitable remotely without user interaction, with affected versions preceding 21.1080.0. Public references (e.g...
CVE-2025-54454
Samsung MagicINFO 9 Server is affected by a hard-coded credentials vulnerability that enables authentication bypass. Affected versions are prior to 21.1080.0; exploitation can lead to unauthorized access with high impact on confidentiality, integrity, and availability as indicated by CVSS vectors...