3850 matches found
CVE-2025-54445
Improper Restriction of XML External Entity Reference vulnerability in Samsung Electronics MagicINFO 9 Server allows Server Side Request Forgery.This issue affects MagicINFO 9 Server: less than 21.1080.0...
CVE-2025-54441
Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0...
CVE-2025-54443
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Samsung Electronics MagicINFO 9 Server allows Upload a Web Shell to a Web Server.This issue affects MagicINFO 9 Server: less than 21.1080.0...
CVE-2025-54444
Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0...
CVE-2025-54442
Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0...
CVE-2025-54438
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Samsung Electronics MagicINFO 9 Server allows Upload a Web Shell to a Web Server.This issue affects MagicINFO 9 Server: less than 21.1080.0...
CVE-2025-54439
Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0...
CVE-2025-54438
Samsung MagicINFO 9 Server is affected by a path traversal vulnerability that allows uploading a web shell. The issue exists in MagicINFO 9 Server versions prior to 21.1080.0 and stems from improper restriction of restricted directory pathnames in the download/upload workflow. Impact is high (una...
CVE-2025-54438
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Samsung Electronics MagicINFO 9 Server allows Upload a Web Shell to a Web Server.This issue affects MagicINFO 9 Server: less than 21.1080.0...
CVE-2025-54438
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Samsung Electronics MagicINFO 9 Server allows Upload a Web Shell to a Web Server.This issue affects MagicINFO 9 Server: less than 21.1080.0...
CVE-2025-54444
Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0...
CVE-2025-54444
Samsung MagicINFO 9 Server is affected by a vulnerability that permits Unrestricted Upload of Files with Dangerous Types, enabling remote code execution. The issue affects MagicINFO 9 Server versions older than 21.1080.0, with a root cause in unsafe handling of uploaded files. The vulnerability c...
CVE-2025-54443
Samsung Electronics MagicINFO 9 Server contains a path traversal vulnerability (CVE-2025-54443) that allows uploading a web shell due to improper restriction of restricted directory pathnames. Affected versions are MagicINFO 9 Server prior to 21.1080.0. Impact is described as potential remote cod...
CVE-2025-54442
Samsung MagicINFO 9 Server is affected by an Unrestricted Upload of File with Dangerous Type vulnerability. The root cause is lack of validation for uploaded files, enabling remote code execution via dangerous file types on versions prior to 21.1080.0 (attackers can exploit remotely; authenticati...
CVE-2025-54442
Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0...
CVE-2025-54441
Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0...
CVE-2025-54441
Samsung MagicINFO 9 Server is affected by CVE-2025-54441 due to an Unrestricted Upload of File with Dangerous Type, enabling code execution. Affected are MagicINFO 9 Server versions prior to 21.1080.0. Public descriptions across sources (including PT-Security and ZDI) indicate that the vulnerabil...
CVE-2025-54441
Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0...
CVE-2025-54440
CVE-2025-54440 affects Samsung Electronics MagicINFO 9 Server (versions prior to 21.1080.0). The issue is Unrestricted Upload of File with Dangerous Type in the MagicInfoWebAuthorClient, enabling remote code execution via crafted uploads. Connected sources confirm the flaw and the affected versio...
CVE-2025-54440
Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0...