Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9

链接： https://github.com/advisories/GHSA-536w-v7mf-6h82

CVSS 评分： 9.8

参考链接：

https://nvd.nist.gov/vuln/detail/CVE-2025-54448
https://security.samsungtv.com/securityUpdates
https://github.com/advisories/GHSA-536w-v7mf-6h82

描述：

Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0.

安全公告

#Github Advisory

Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9

http://example.com/2025/07/23/github_1709273062/

作者

lianccc

发布于

2025年7月23日

许可协议

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in 上一篇

Improper Control of Generation of Code ('Code Injection') vulnerability in Samsung Electronics 下一篇