Primary

Context

Samsung MagicInfo 9 Server Hardcoded Database Credentials Vulnerability

Vulnerability

A vulnerability exists in Samsung MagicInfo 9 Server versions prior to 21.1090.1, where the database account and password are hardcoded. This flaw allows users to log in with the embedded credentials and manipulate the database.

Impact

Exploitation of this vulnerability could lead to unauthorized database access and manipulation.

Remediation

Users are advised to update to the latest version of MagicInfo 9 Server, as the hardcoded credentials have been removed in the patched version. Instructions for updating can be found on the Samsung website.

Added: Feb 2, 2026, 5:18 AM

Updated: Feb 2, 2026, 5:18 AM

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

5.0

exploitability

5.3

remediation

0.0

relevance

2.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

5.0

exploitability

5.3

remediation

0.0

relevance

2.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Samsung MagicInfo 9 Server Hardcoded Database Credentials Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Samsung MagicINFO 9 Server

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating