CVE-2025-54453 – This path traversal vulnerability in Samsung Ma... (How to Fix)

Q: What is the severity of CVE-2025-54453?

CVE-2025-54453 has a CVSS score of 8.8 (HIGH). This path traversal vulnerability in Samsung MagicINFO 9 Server allows attackers to access files outside the intended directory, potentially leading to code injection. It affects MagicINFO 9 Server installations running versions below 21.1080.0. Attackers could execute arbitrary code on affected systems.

📋 TL;DR

This path traversal vulnerability in Samsung MagicINFO 9 Server allows attackers to access files outside the intended directory, potentially leading to code injection. It affects MagicINFO 9 Server installations running versions below 21.1080.0. Attackers could execute arbitrary code on affected systems.

💻 Affected Systems

Products:

Samsung MagicINFO 9 Server

Versions: All versions less than 21.1080.0

Operating Systems: Not specified in CVE

Default Config Vulnerable: ⚠️ Yes

Notes: Affects MagicINFO 9 Server specifically; other MagicINFO versions may not be affected.

📦 What is this software?

Magicinfo 9 Server by Samsung

View all CVEs affecting Magicinfo 9 Server →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Full system compromise with remote code execution, allowing attackers to install malware, steal data, or pivot to other systems.

🟠

Likely Case

Unauthorized file access leading to information disclosure, configuration modification, or limited code execution.

🟢

If Mitigated

Limited impact if proper network segmentation and access controls prevent exploitation attempts.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Path traversal vulnerabilities typically have low exploitation complexity, especially if unauthenticated.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 21.1080.0 or later

Vendor Advisory: https://security.samsungtv.com/securityUpdates

Restart Required: Yes

Instructions:

1. Download MagicINFO 9 Server version 21.1080.0 or later from Samsung. 2. Backup current configuration. 3. Install the update following Samsung's documentation. 4. Restart the MagicINFO service.

🔧 Temporary Workarounds

Network Access Restriction

all

Restrict network access to MagicINFO Server to trusted IPs only

Use firewall rules to limit access to MagicINFO Server ports

Application Firewall Rules

all

Implement WAF rules to block path traversal patterns

Add WAF rules to block requests containing '../', '..\\', or similar traversal sequences

🧯 If You Can't Patch

Isolate MagicINFO Server on separate network segment with strict access controls
Implement application-level input validation to sanitize file path inputs

🔍 How to Verify

Check if Vulnerable:

Check MagicINFO Server version in administration interface or configuration files

Check Version:

Check MagicINFO Server web interface or configuration files for version information

Verify Fix Applied:

Verify version is 21.1080.0 or higher in MagicINFO Server interface

📡 Detection & Monitoring

Log Indicators:

Unusual file access patterns
Requests containing '../' or similar traversal sequences
Unexpected process execution

Network Indicators:

Unusual outbound connections from MagicINFO Server
Traffic to unexpected ports

SIEM Query:

source="magicinfo" AND (url="*../*" OR url="*..\\*" OR process="unexpected_executable")

📊 Metadata

CVE ID: CVE-2025-54453

CVSS v3 Score: 8.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-22

EPSS Score: 0.11% exploit probability (29.2th percentile)

Published: July 23, 2025

Last Updated: July 28, 2025

🔗 References

https://security.samsungtv.com/securityUpdates Patch

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-54453, you might also want to check these: