{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-28T22:29:30.324","vulnerabilities":[{"cve":{"id":"CVE-2026-25202","sourceIdentifier":"PSIRT@samsung.com","published":"2026-02-02T05:16:07.280","lastModified":"2026-03-10T18:44:22.143","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"The database account and password are hardcoded, allowing login with the account to manipulate the database in MagicInfo9 Server.This issue affects MagicINFO 9 Server: less than 21.1090.1."},{"lang":"es","value":"La cuenta y la contraseña de la base de datos están codificadas de forma rígida, permitiendo el inicio de sesión con la cuenta para manipular la base de datos en el servidor MagicInfo9. Este problema afecta a MagicINFO 9 Server: versiones inferiores a 21.1090.1."}],"metrics":{"cvssMetricV31":[{"source":"PSIRT@samsung.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"PSIRT@samsung.com","type":"Secondary","description":[{"lang":"en","value":"CWE-798"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:samsung:magicinfo_9_server:*:*:*:*:*:*:*:*","versionEndExcluding":"21.1090.1","matchCriteriaId":"72138C44-D3F0-4373-967F-831861E19195"}]}]}],"references":[{"url":"https://security.samsungtv.com/securityUpdates","source":"PSIRT@samsung.com","tags":["Vendor Advisory"]}]}}]}