CVE-2025-4632 - Samsung MagicINFO 9 Server Path Traversal Vulnerability
Project:Samsung
Product:MagicINFO 9 Server
Date Added:2025-05-22Due Date:2025-06-12
Vulnerability Name
Samsung MagicINFO 9 Server Path Traversal Vulnerability
Description
Samsung MagicINFO 9 Server contains a path traversal vulnerability that allows an attacker to write arbitrary file as system authority.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Additional Notes
https://security.samsungtv.com/securityUpdates#SVP-MAY-2025
https://nvd.nist.gov/vuln/detail/CVE-2025-4632