Exposures › CVE-2024-7399
Samsung MagicINFO 9 Server path traversal vulnerability allows attackers to write arbitrary files as system authority.
This vulnerability enables attackers to write files as system authority, potentially leading to privilege escalation or system compromise. DIB organizations should audit Samsung MagicINFO 9 Server deployments and apply patches immediately to prevent unauthorized file system access.
Shame score — A known path traversal vulnerability that allows file writing as system authority, though not directly RCE, poses significant security risks.
Samsung MagicINFO 9 Server contains a path traversal vulnerability that could allow an attacker to write arbitrary files as system authority.
No correlated FedRAMP products.