Magicinfo 9 Server CVEs and Security Vulnerabilities

Filtered by vendor Samsung Subscriptions

Filtered by product Magicinfo 9 Server Subscriptions

Search

Switch to Advanced Search (Beta)

Total 23 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2026-25202	2 Samsung, Samsung Electronics	2 Magicinfo 9 Server, Magicinfo 9 Server	2026-03-10	9.8 Critical
The database account and password are hardcoded, allowing login with the account to manipulate the database in MagicInfo9 Server.This issue affects MagicINFO 9 Server: less than 21.1090.1.
CVE-2026-25201	2 Samsung, Samsung Electronics	2 Magicinfo 9 Server, Magicinfo 9 Server	2026-03-10	8.8 High
An unauthenticated user can upload arbitrary files to execute remote code, leading to privilege escalation in MagicInfo9 Server. This issue affects MagicINFO 9 Server: less than 21.1090.1.
CVE-2026-25200	2 Samsung, Samsung Electronics	2 Magicinfo 9 Server, Magicinfo 9 Server	2026-03-10	9.8 Critical
A vulnerability in MagicInfo9 Server allows authorized users to upload HTML files without authentication, leading to Stored XSS, which can result in account takeover This issue affects MagicINFO 9 Server: less than 21.1090.1.
CVE-2025-4632	1 Samsung	1 Magicinfo 9 Server	2026-02-26	9.8 Critical
Improper limitation of a pathname to a restricted directory vulnerability in Samsung MagicINFO 9 Server version before 21.1052 allows attackers to write arbitrary file as system authority.
CVE-2025-54454	2 Samsung, Samsung Electronics	2 Magicinfo 9 Server, Magicinfo 9 Server	2026-02-26	9.1 Critical
Use of Hard-coded Credentials vulnerability in Samsung Electronics MagicINFO 9 Server allows Authentication Bypass.This issue affects MagicINFO 9 Server: less than 21.1080.0.
CVE-2025-54455	2 Samsung, Samsung Electronics	2 Magicinfo 9 Server, Magicinfo 9 Server	2026-02-26	9.1 Critical
Use of Hard-coded Credentials vulnerability in Samsung Electronics MagicINFO 9 Server allows Authentication Bypass.This issue affects MagicINFO 9 Server: less than 21.1080.0.
CVE-2025-54449	2 Samsung, Samsung Electronics	2 Magicinfo 9 Server, Magicinfo 9 Server	2026-02-26	9.8 Critical
Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0.
CVE-2025-54450	2 Samsung, Samsung Electronics	2 Magicinfo 9 Server, Magicinfo 9 Server	2026-02-26	7.2 High
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0.
CVE-2025-54451	2 Samsung, Samsung Electronics	2 Magicinfo 9 Server, Magicinfo 9 Server	2026-02-26	9.8 Critical
Improper Control of Generation of Code ('Code Injection') vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0.
CVE-2025-54453	2 Samsung, Samsung Electronics	2 Magicinfo 9 Server, Magicinfo 9 Server	2026-02-26	8.8 High
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0.
CVE-2025-54448	2 Samsung, Samsung Electronics	2 Magicinfo 9 Server, Magicinfo 9 Server	2026-02-26	9.8 Critical
Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0.
CVE-2025-54446	2 Samsung, Samsung Electronics	2 Magicinfo 9 Server, Magicinfo 9 Server	2026-02-26	9.8 Critical
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Samsung Electronics MagicINFO 9 Server allows Upload a Web Shell to a Web Server.This issue affects MagicINFO 9 Server: less than 21.1080.0
CVE-2025-54447	2 Samsung, Samsung Electronics	2 Magicinfo 9 Server, Magicinfo 9 Server	2026-02-26	8.1 High
Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0.
CVE-2025-54440	2 Samsung, Samsung Electronics	2 Magicinfo 9 Server, Magicinfo 9 Server	2026-02-26	9.8 Critical
Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0.
CVE-2025-54441	2 Samsung, Samsung Electronics	2 Magicinfo 9 Server, Magicinfo 9 Server	2026-02-26	8.8 High
Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0.
CVE-2025-54442	2 Samsung, Samsung Electronics	2 Magicinfo 9 Server, Magicinfo 9 Server	2026-02-26	9.8 Critical
Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0.
CVE-2025-54443	2 Samsung, Samsung Electronics	2 Magicinfo 9 Server, Magicinfo 9 Server	2026-02-26	9.8 Critical
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Samsung Electronics MagicINFO 9 Server allows Upload a Web Shell to a Web Server.This issue affects MagicINFO 9 Server: less than 21.1080.0
CVE-2025-54444	2 Samsung, Samsung Electronics	2 Magicinfo 9 Server, Magicinfo 9 Server	2026-02-26	9.8 Critical
Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0.
CVE-2025-54438	2 Samsung, Samsung Electronics	2 Magicinfo 9 Server, Magicinfo 9 Server	2026-02-26	9.8 Critical
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Samsung Electronics MagicINFO 9 Server allows Upload a Web Shell to a Web Server.This issue affects MagicINFO 9 Server: less than 21.1080.0
CVE-2025-54439	2 Samsung, Samsung Electronics	2 Magicinfo 9 Server, Magicinfo 9 Server	2026-02-26	8.8 High
Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0.

Page 1 of 2. next last »