CVE-2025-54455
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-07-23

Last updated on: 2025-07-28

Assigner: Samsung TV & Appliance

Description
Use of Hard-coded Credentials vulnerability in Samsung Electronics MagicINFO 9 Server allows Authentication Bypass.This issue affects MagicINFO 9 Server: less than 21.1080.0.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-07-23
Last Modified
2025-07-28
Generated
2026-05-27
AI Q&A
2025-07-23
EPSS Evaluated
2026-05-25
NVD
CVE-2025-54455
EUVD
EUVD-2025-22412
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
samsung magicinfo_9_server to 21.1080.0 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-798 The product contains hard-coded credentials, such as a password or cryptographic key.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability is a Use of Hard-coded Credentials issue in Samsung Electronics MagicINFO 9 Server (versions less than 21.1080.0). It allows an attacker to bypass authentication, meaning they can gain unauthorized access to the system without valid credentials.


How can this vulnerability impact me? :

The vulnerability can lead to unauthorized access to the MagicINFO 9 Server, potentially allowing attackers to compromise confidentiality and integrity of the system and its data. According to the CVSS score, it has a high impact on confidentiality and integrity but does not affect availability.


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart