CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-54446

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Samsung Electronics MagicINFO 9 Server allows Upload a Web Shell to a Web Server.This issue affects MagicINFO 9 Server: less than 21.1080.0

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 14.2%

CVSS Severity

CVSS v3 Score 9.8

References

https://security.samsungtv.com/securityUpdates

Products affected by CVE-2025-54446

Samsung » Magicinfo 9 Server » Version: N/A

cpe:2.3:a:samsung:magicinfo_9_server:-
Samsung » Magicinfo 9 Server » Version: 21.1000.3

cpe:2.3:a:samsung:magicinfo_9_server:21.1000.3
Samsung » Magicinfo 9 Server » Version: 21.1010.2

cpe:2.3:a:samsung:magicinfo_9_server:21.1010.2
Samsung » Magicinfo 9 Server » Version: 21.1020.0

cpe:2.3:a:samsung:magicinfo_9_server:21.1020.0
Samsung » Magicinfo 9 Server » Version: 21.1030.0

cpe:2.3:a:samsung:magicinfo_9_server:21.1030.0
Samsung » Magicinfo 9 Server » Version: 21.1040.2

cpe:2.3:a:samsung:magicinfo_9_server:21.1040.2
Samsung » Magicinfo 9 Server » Version: 21.1040.3

cpe:2.3:a:samsung:magicinfo_9_server:21.1040.3
Samsung » Magicinfo 9 Server » Version: 21.1050.0

cpe:2.3:a:samsung:magicinfo_9_server:21.1050.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-54446

Products

Pricing

Contact Us