What is the CVSS score of CVE-2024-7399?

CVE-2024-7399 has a CVSS 3.1 base score of 8.8 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 71.0%.

Which versions of Samsung are affected by CVE-2024-7399?

Samsung MagicINFO 9 Server contains a critical remote code execution vulnerability (CVE-2024-7399) allowing attackers to write arbitrary files with SYSTEM privileges, confirmed actively exploited…

Is there a public PoC exploit available for CVE-2024-7399?

Yes, a public proof-of-concept exploit is available for CVE-2024-7399. Prioritise patching immediately. EPSS: 71.0%.

How to fix or mitigate CVE-2024-7399?

Within 24 hours: Conduct immediate inventory of all Samsung MagicINFO 9 Server installations; identify and isolate systems running versions prior to 21.1050. Within 7 days: Implement network segmentation to restrict access to MagicINFO servers via firewall rules; disable remote management interfaces; deploy network-based monitoring for path traversal exploitation attempts. Within 30 days: Monitor Samsung vendor advisories for patch releases; develop and execute contingency plan for system replacement or decommissioning if patch timeline exceeds acceptable risk tolerance.

Samsung CVE-2024-7399

HIGH

Path Traversal (CWE-22)

2024-08-12 PSIRT@samsung.com

Path Traversal Samsung

8.8

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Added to CISA KEV

Apr 24, 2026 - 18:47 CISA

DescriptionNVD

Improper limitation of a pathname to a restricted directory vulnerability in Samsung MagicINFO 9 Server version before 21.1050 allows attackers to write arbitrary file as system authority.

AnalysisAI

Arbitrary file write as SYSTEM in Samsung MagicINFO 9 Server before version 21.1050 allows remote attackers to place attacker-controlled files anywhere on the server filesystem via a path traversal flaw. The issue is confirmed actively exploited (CISA KEV) with publicly available exploit code and an EPSS score of 71% (99th percentile), making it one of the highest-priority remediation items currently tracked.