← ExploitWatch
HomeExploited Vulnerabilities

CVE-2024-7399 — Actively Exploited: MagicINFO 9 Server (Samsung)

Samsung MagicINFO 9 Server contains a path traversal vulnerability that could allow an attacker to write arbitrary files as system authority.

CVE IDCVE-2024-7399
VendorSamsung
ProductMagicINFO 9 Server
Vulnerability nameSamsung MagicINFO 9 Server Path Traversal Vulnerability
Date added2026-04-24
Remediation due2026-05-08
Known ransomware useUnknown
Required actionApply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
DescriptionSamsung MagicINFO 9 Server contains a path traversal vulnerability that could allow an attacker to write arbitrary files as system authority.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →