CVE-2024-7399 - Samsung MagicINFO 9 Server Path Traversal Vulnerability

Vulnerability Name

Samsung MagicINFO 9 Server Path Traversal Vulnerability

Description

Samsung MagicINFO 9 Server contains a path traversal vulnerability that could allow an attacker to write arbitrary files as system authority.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Additional Notes

https://security.samsungtv.com/securityUpdates

https://nvd.nist.gov/vuln/detail/CVE-2024-7399

Related News Articles

CISA Adds 4 Exploited Flaws to KEV, Sets May 2026 Federal DeadlineApril 25, 2026