CVE Daily

CVE-2025-54453

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') v...

High CVSS 8.8

Overview

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This issue affects MagicINFO 9 Server: less than 21.1080.0.

CWE: CWE-22 Published: 2025-07-23T06:15:27.800
Risk analysis

This vulnerability is rated 🟠 HIGH.

  • CVSS: 8.8 (HIGH)
  • Detected tags: path (tag impact: MODERATE)

Recommended actions:

  • Canonicalize path; block `..` traversal; use allowlists.

Recommended tools

Tags