{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-25201", "assignerOrgId": "ca193ba2-0cff-4e34-b04e-1ea07103c6fe", "state": "PUBLISHED", "assignerShortName": "samsung.tv_appliance", "dateReserved": "2026-01-30T06:07:11.090Z", "datePublished": "2026-02-02T04:49:38.016Z", "dateUpdated": "2026-02-26T15:04:40.332Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "MagicINFO 9 Server", "vendor": "Samsung Electronics", "versions": [{"status": "affected", "version": "21.1090.1"}]}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">An unauthenticated user can upload arbitrary files to execute remote code, leading to privilege escalation in MagicInfo9 Server.</span><br><p>This issue affects MagicINFO 9 Server: less than 21.1090.1.</p>"}], "value": "An unauthenticated user can upload arbitrary files to execute remote code, leading to privilege escalation in MagicInfo9 Server.\nThis issue affects MagicINFO 9 Server: less than 21.1090.1."}], "impacts": [{"capecId": "CAPEC-233", "descriptions": [{"lang": "en", "value": "CAPEC-233 Privilege Escalation"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-434", "description": "CWE-434 Unrestricted Upload of File with Dangerous Type", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "ca193ba2-0cff-4e34-b04e-1ea07103c6fe", "shortName": "samsung.tv_appliance", "dateUpdated": "2026-02-02T04:49:38.016Z"}, "references": [{"url": "https://security.samsungtv.com/securityUpdates"}], "source": {"discovery": "UNKNOWN"}, "x_generator": {"engine": "Vulnogram 0.5.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-25201", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-02-03T04:55:44.687003Z"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-26T15:04:40.332Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-25201", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-02-03T04:55:44.687003Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-02T17:53:24.451Z"}}], "cna": {"source": {"discovery": "UNKNOWN"}, "impacts": [{"capecId": "CAPEC-233", "descriptions": [{"lang": "en", "value": "CAPEC-233 Privilege Escalation"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Samsung Electronics", "product": "MagicINFO 9 Server", "versions": [{"status": "affected", "version": "21.1090.1"}], "defaultStatus": "unaffected"}], "references": [{"url": "https://security.samsungtv.com/securityUpdates"}], "x_generator": {"engine": "Vulnogram 0.5.0"}, "descriptions": [{"lang": "en", "value": "An unauthenticated user can upload arbitrary files to execute remote code, leading to privilege escalation in MagicInfo9 Server.\nThis issue affects MagicINFO 9 Server: less than 21.1090.1.", "supportingMedia": [{"type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">An unauthenticated user can upload arbitrary files to execute remote code, leading to privilege escalation in MagicInfo9 Server.</span><br><p>This issue affects MagicINFO 9 Server: less than 21.1090.1.</p>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-434", "description": "CWE-434 Unrestricted Upload of File with Dangerous Type"}]}], "providerMetadata": {"orgId": "ca193ba2-0cff-4e34-b04e-1ea07103c6fe", "shortName": "samsung.tv_appliance", "dateUpdated": "2026-02-02T04:49:38.016Z"}}}, "cveMetadata": {"cveId": "CVE-2026-25201", "state": "PUBLISHED", "dateUpdated": "2026-02-26T15:04:40.332Z", "dateReserved": "2026-01-30T06:07:11.090Z", "assignerOrgId": "ca193ba2-0cff-4e34-b04e-1ea07103c6fe", "datePublished": "2026-02-02T04:49:38.016Z", "assignerShortName": "samsung.tv_appliance"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:samsung:magicinfo_9_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "72138C44-D3F0-4373-967F-831861E19195", "versionEndExcluding": "21.1090.1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "An unauthenticated user can upload arbitrary files to execute remote code, leading to privilege escalation in MagicInfo9 Server.\nThis issue affects MagicINFO 9 Server: less than 21.1090.1."}, {"lang": "es", "value": "Un usuario no autenticado puede cargar archivos arbitrarios para ejecutar c\u00f3digo remoto, lo que lleva a una escalada de privilegios en el servidor MagicInfo9.\nEste problema afecta a MagicINFO 9 Server: versiones anteriores a 21.1090.1."}], "id": "CVE-2026-25201", "lastModified": "2026-03-10T18:44:05.213", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "PSIRT@samsung.com", "type": "Secondary"}]}, "published": "2026-02-02T05:16:06.697", "references": [{"source": "PSIRT@samsung.com", "tags": ["Vendor Advisory"], "url": "https://security.samsungtv.com/securityUpdates"}], "sourceIdentifier": "PSIRT@samsung.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-434"}], "source": "PSIRT@samsung.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-18T00:45:44.561771+00:00", "value": {"mitigation_remediation": ["Upgrade MagicINFO\u00a09\u00a0Server to version 21.1090.1 or later once the vendor releases a patch.", "If an upgrade is delayed, block or disable the file\u2011upload functionality on the web interface or enforce strict file\u2011type checks so that only approved media files are accepted.", "Apply network segmentation and firewall rules to restrict access to the MagicINFO server to trusted IP addresses or internal networks.", "Review and monitor application logs for unauthorized upload attempts."], "summary": {"action": "Patch Now", "impact": "Remote Code Execution"}, "threat_synthesis": {"affected_systems": "Samsung Electronics' MagicINFO 9 Server is vulnerable when its version is lower than 21.1090.1. No other vendor or product is listed as affected. All installations running an earlier version carry the same risk.", "description_and_impact": "The flaw allows an unauthenticated user to upload arbitrary files, enabling remote code execution and privilege escalation through the MagicInfo9 Server web interface. This is a high\u2011severity file\u2011upload vulnerability (CWE-434). The impact spans the entire affected instance, potentially giving attackers full control over the server and data it hosts.", "risk_and_exploitability": "The CVSS score of 8.8 indicates a high severity, and the EPSS score of less than 1% suggests low, but non\u2011zero, likelihood of current exploitation. The issue is not listed in the CISA KEV catalog, meaning no public exploitation evidence is reported yet. The attack path is straightforward: an unauthenticated user uploads a crafted file via the server\u2019s file\u2011upload endpoint; because the application accepts any file type, an attacker can place a malicious script that the server will later execute, granting full administrative privileges."}}}}, "created": "2026-02-02T09:26:08.231355+00:00", "updated": "2026-04-18T01:00:11.614911+00:00", "vendors": ["samsung_electronics", "samsung_electronics$PRODUCT$magicinfo_9_server"]}