TTPwire Vol. 1 · MITRE ATT&CK·Tagged

← All stories

Huntress

Rapid Response: Samsung MagicINFO 9 Server Flaw

2025-05-07 · Read original ↗

ATT&CK techniques detected

4 predictions
T1190Exploit Public-Facing Application
87%
"rapid response : samsung magicinfo 9 server flaw tl ; dr : while reports have indicated the latest version of samsung magicinfo 9 server fixes a high - severity flaw ( cve - 2024 - 7399 ), huntress has independently verified that the latest version ( 21. 1050. 0 ) is vulnerable t…"
T1190Exploit Public-Facing Application
86%
"of magicinfo 9 server was indeed still vulnerable, and that there are currently no patches available. it can only be concluded that the patch from august 2024 was either incomplete or for a separate, but similar, vulnerability. huntress has reached out to the team at samsung, not…"
T1588.006Vulnerabilities
63%
"advisory on april 30. the blog post details the affected version as magicinfo 9 server 21. 1050. 0, which at the time of publishing was the latest version made available. despite this, in august 2024, a vulnerability with a very similar description was registered as cve - 2024 - …"
T1190Exploit Public-Facing Application
58%
"advisory on april 30. the blog post details the affected version as magicinfo 9 server 21. 1050. 0, which at the time of publishing was the latest version made available. despite this, in august 2024, a vulnerability with a very similar description was registered as cve - 2024 - …"

Summary

Huntress has verified Samsung’s MagicINFO 9 Server (version 21.1050.0) is vulnerable to a publicly available proof-of-concept (PoC). Understand why MagicINFO 9 Server shouldn’t be internet-facing until a patch is applied.