Improper Authentication in Samsung MagicINFO 9 Server
CVE-2025-54452

9.8CRITICAL

Key Information:

Vendor: Samsung Electronics
Status: Magicinfo 9 Server
Vendor: CVE Published:; 23 July 2025

🔔 Create Samsung Electronics Vulnerability Alert

What is CVE-2025-54452?

Samsung Electronics' MagicINFO 9 Server is affected by an improper authentication vulnerability that enables unauthorized access through authentication bypass. This issue impacts versions prior to 21.1080.0, posing a significant security risk as attackers could exploit this flaw to gain access to sensitive information or control over the affected system. Users are advised to review their security practices and update to the latest version to mitigate potential threats.

Affected Version(s)

MagicINFO 9 Server 21.1080.0

References

https://security.samsungtv.com/securityUpdates

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 23, 2025
Vulnerability Reserved
Jul 22, 2025

JSON