Samsung MagicINFO 9 Server Path Traversal Vulnerability (CVE-2025-4632)
Samsung MagicINFO 9 Server contains a path traversal vulnerability that allows an attacker to write arbitrary file as system authority.
A remote attacker, without authentication, can achieve full data confidentiality loss, arbitrary modification of data, complete denial of service or system unavailability. Federal agencies are required to remediate by 2025-06-12 under CISA BOD 22-01.
This is a Path Traversal (CWE-22) vulnerability in Samsung MagicINFO 9 Server. Improper limitation of a pathname to a restricted directory vulnerability in Samsung MagicINFO 9 Server version before 21.1052 allows attackers to write arbitrary file as system authority. Exploitation requires remote network access, low attack complexity, no authentication required, and no user interaction required.
📧
Phishing link
🖼
Malicious file
🔓
Server compromised
Probably yes if any of these apply:
CISA added this CVE to the Known Exploited Vulnerabilities catalog on 2025-05-22 based on evidence of active exploitation in the wild. Federal agencies required to remediate by 2025-06-12.
Manual remediation steps
No tested PowerShell script for this entry yet. We’re prioritising automation based on user demand.