{"id":"CVE-2026-25201","details":"An unauthenticated user can upload arbitrary files to execute remote code, leading to privilege escalation in MagicInfo9 Server.\nThis issue affects MagicINFO 9 Server: less than 21.1090.1.","modified":"2026-03-14T01:55:07.782858Z","published":"2026-02-02T05:16:06.697Z","references":[{"type":"ADVISORY","url":"https://security.samsungtv.com/securityUpdates"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-25201.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"21.1090.1"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}