CRITICAL✓ PATCH🇵🇱 Wersja polska

CVE-2025-54438

CVSS 9.8v3.1pub. 2025-07-23upd. 2025-07-30

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Samsung Electronics MagicINFO 9 Server allows Upload a Web Shell to a Web Server.This issue affects MagicINFO 9 Server: less than 21.1080.0

🤖 AI Analysis
How it works

The vulnerability results from improper validation of the file path during file upload operations — the application does not effectively restrict the destination directory to an allowed area (CWE-22). An attacker can craft a request containing path traversal sequences (e.g., '../') to save a file outside the intended directory, including directly in the directory served by the web server. As a result, it is possible to place an executable web shell, which can then be invoked via HTTP.

Impact

Successful exploitation of this vulnerability gives the attacker full remote control over the server — it is possible to execute arbitrary system commands, steal data, and use the compromised server as a launching point for further attacks on the internal network.

Mitigation & patch

Samsung MagicINFO 9 Server should be updated to version 21.1080.0 or later as soon as possible. Detailed information about the patch is available at https://security.samsungtv.com/securityUpdates. Until the update is deployed, it is recommended to restrict access to the server interface only to trusted IP addresses using a firewall and to monitor the webroot directory for unauthorized files.

Who is affected

Samsung MagicINFO 9 Server in all versions below 21.1080.0

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Samsung Magicinfo 9 Server

    APP
    Samsung
    < 21.1080.0
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
Path Traversal
CWE
References

Related vulnerabilities

CVE-2025-4632CRITICAL9.8⚠ KEVPL ✓ten sam produkt

Path Traversal w Samsung MagicINFO 9 Server — zapis plików jako SYSTEM

CVE-2026-25200CRITICAL9.8PL ✓ten sam produkt

Samsung MagicINFO 9 Server — Stored XSS przez upload plików HTML

CVE-2026-25202CRITICAL9.8PL ✓ten sam produkt

Zakodowane na stałe dane logowania do bazy danych w Samsung MagicINFO 9 Server

CVE-2025-54443CRITICAL9.8PL ✓ten sam produkt

Path Traversal w Samsung MagicINFO 9 Server umożliwia upload Web Shell

CVE-2025-54440CRITICAL9.8PL ✓ten sam produkt

Samsung MagicINFO 9 Server — nieograniczony upload pliku umożliwia Code Injection