ZDI 2026-04-15

ZDI-26-268: Samsung MagicINFO 9 Server Incorrect Default Permissions Local Privilege Escalation Vulnerability

CVE-2026-25203

Machine-generated analysis · WAYSCloud LLM

The vulnerability stems from incorrect default permissions in Samsung MagicINFO 9 Server, enabling local privilege escalation.

Context

Samsung MagicINFO 9 Server is affected by a local privilege escalation vulnerability. The issue arises due to incorrect default permissions on the system. An attacker must already have the ability to execute low-privileged code to exploit this condition. The ZDI assigned a CVSS score of 7.8, indicating a medium to high severity impact.

Operator considerations

Check: Verify if Samsung MagicINFO 9 Server is installed with default permissions on the system.

From Zero Day Initiative ↗

This vulnerability allows local attackers to escalate privileges on affected installations of Samsung MagicINFO 9 Server. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2026-25203.

Read the full advisory on ZDI →