<ul><li>Threat actors have started exploiting a vulnerability in Samsung MagicINFO shortly after a Proof of Concept exploit publication.</li><li>The vulnerability, identified as CVE-2024-7399 with a CVSS score of 8.8, allows arbitrary file writing, potentially leading to remote code execution.</li><li>The flaw in Samsung MagicINFO 9 Server enables unauthenticated users to upload JSP files and execute code with system-level access.</li><li>Samsung addressed the vulnerability with the release of MagicINFO 9 Server version 21.1050 in August 2024, but ongoing exploitation is expected due to the simplicity of attack and availability of the PoC exploit.</li></ul>

Samsung MagicINFO flaw exploited days after PoC exploit publication

Discover more