Lucene search
K

285 matches found

ATTACKERKB
ATTACKERKB
added 2025/07/23 5:29 a.m.2 views

CVE-2025-54451

Improper Control of Generation of Code 'Code Injection' vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0...

9.8CVSS5.8AI score0.00645EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/07/23 5:29 a.m.9 views

CVE-2025-54451

Improper Control of Generation of Code 'Code Injection' vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0...

9.8CVSS0.00645EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/07/23 5:28 a.m.4 views

CVE-2025-54450

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0...

9.8CVSS5.8AI score0.00589EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2025/07/23 5:28 a.m.21 views

CVE-2025-54450

Samsung MagicINFO 9 Server (pre-21.1080.0) is affected by a path traversal vulnerability that can lead to remote code execution. Public sources describe the flaw within the DeviceLogUploadServlet, arising from improper validation of a user-supplied path used in file operations. The impact is desc...

9.8CVSS7.2AI score0.00589EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/07/23 5:28 a.m.13 views

CVE-2025-54450

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0...

7.2CVSS0.00589EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/23 5:28 a.m.5 views

CVE-2025-54450

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0...

7.2CVSS6.6AI score0.00589EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/07/23 5:27 a.m.2 views

CVE-2025-54449

Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0...

9.8CVSS5.8AI score0.0061EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2025/07/23 5:27 a.m.25 views

CVE-2025-54449

CVE-2025-54449 affects Samsung MagicINFO 9 Server, with versions prior to 21.1080.0 vulnerable to an unrestricted upload of files with dangerous types, enabling remote code execution. The issue stems from lack of proper validation during file upload (fillLftOrLfdInfo in the ZDI advisory aligns wi...

9.8CVSS7.3AI score0.0061EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/07/23 5:27 a.m.5 views

CVE-2025-54449

Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0...

9.8CVSS6.6AI score0.0061EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/23 5:27 a.m.10 views

CVE-2025-54449

Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0...

9.8CVSS0.0061EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/23 5:27 a.m.3 views

CVE-2025-54455

Use of Hard-coded Credentials vulnerability in Samsung Electronics MagicINFO 9 Server allows Authentication Bypass.This issue affects MagicINFO 9 Server: less than 21.1080.0...

9.1CVSS6.6AI score0.00554EPSS
Exploits0References1
CVE
CVE
added 2025/07/23 5:27 a.m.26 views

CVE-2025-54455

Samsung MagicINFO 9 Server is affected by a hard-coded credentials vulnerability that enables authentication bypass. The issue exists in PremiumClientService/related components and is exploitable remotely without user interaction, with affected versions preceding 21.1080.0. Public references (e.g...

9.8CVSS7.3AI score0.00554EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2025/07/23 5:27 a.m.2 views

CVE-2025-54455

Use of Hard-coded Credentials vulnerability in Samsung Electronics MagicINFO 9 Server allows Authentication Bypass.This issue affects MagicINFO 9 Server: less than 21.1080.0...

9.8CVSS5.8AI score0.00554EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/07/23 5:27 a.m.9 views

CVE-2025-54455

Use of Hard-coded Credentials vulnerability in Samsung Electronics MagicINFO 9 Server allows Authentication Bypass.This issue affects MagicINFO 9 Server: less than 21.1080.0...

9.1CVSS0.00554EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/23 5:26 a.m.4 views

CVE-2025-54454

Use of Hard-coded Credentials vulnerability in Samsung Electronics MagicINFO 9 Server allows Authentication Bypass.This issue affects MagicINFO 9 Server: less than 21.1080.0...

9.1CVSS6.6AI score0.00543EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/07/23 5:26 a.m.1 views

CVE-2025-54454

Use of Hard-coded Credentials vulnerability in Samsung Electronics MagicINFO 9 Server allows Authentication Bypass.This issue affects MagicINFO 9 Server: less than 21.1080.0...

9.8CVSS5.8AI score0.00543EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2025/07/23 5:26 a.m.25 views

CVE-2025-54454

Samsung MagicINFO 9 Server is affected by a hard-coded credentials vulnerability that enables authentication bypass. Affected versions are prior to 21.1080.0; exploitation can lead to unauthorized access with high impact on confidentiality, integrity, and availability as indicated by CVSS vectors...

9.8CVSS7.3AI score0.00543EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/07/23 5:26 a.m.9 views

CVE-2025-54454

Use of Hard-coded Credentials vulnerability in Samsung Electronics MagicINFO 9 Server allows Authentication Bypass.This issue affects MagicINFO 9 Server: less than 21.1080.0...

9.1CVSS0.00543EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/07/23 12:0 a.m.4 views

SAMSUNG MagicINFO 9 Server 安全漏洞

SAMSUNG MagicINFO 9 Server is an enterprise-class digital signage content management and device monitoring platform from Samsung Korea. A file upload vulnerability exists in SAMSUNG MagicINFO 9 Server, which stems from a failure to perform strict checks on uploaded file types. An attacker can...

9.8CVSS7.7AI score0.00473EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/07/23 12:0 a.m.6 views

SAMSUNG MagicINFO 9 Server 安全漏洞

SAMSUNG MagicINFO 9 Server is an enterprise-class digital signage content management and device monitoring platform from Samsung Korea. SAMSUNG MagicINFO 9 Server suffers from a path traversal vulnerability that stems from not strictly limiting restricted directory pathnames. An attacker could...

9.8CVSS7.6AI score0.00575EPSS
Exploits0References1
Rows per page
Query Builder