Samsung has issued software updates to rectify a significant security vulnerability in MagicINFO 9 Server that has been actively taken advantage of in real-world scenarios.
The weakness, identified as CVE-2025-4632 (CVSS rating: 9.8), has been characterized as a path traversal issue.
“Insufficient restriction of a pathname to a confined directory vulnerability in Samsung MagicINFO 9 Server versions prior to 21.1052 permits malicious actors to