Samsung MagicINFO 9 Server — unauthenticated path traversal / file write (CVSS 9.8, Mirai, KEV deadline 2026-05-08)

cve · CVE-2024-7399

Coverage timeline

first 2026-05-07 → last 2026-05-10

Briefs

2 distinct

Sources cited

5 hosts

Sections touched

active_vulns, weekly_summary

Co-occurring entities

no co-occurrence

Story timeline

2026-05-10CTI Weekly Summary — 2026-W19 (May 04 – May 10, 2026)
weekly_summaryConsolidated in weekly summary for week 2026-W19
2026-05-07CTI Daily Brief — 2026-05-07
active_vulnsFirst coverage. Unauthenticated SYSTEM-level file write exploited to deploy Mirai botnet payloads; public-sector facilities (airports, hospitals) among deployment contexts; CISA KEV deadline 2026-05-08 (overdue).

Where this entity is cited

active_vulns1
weekly_summary1

Source distribution

nvd.nist.gov3 (43%)
helpnetsecurity.com1 (14%)
securityboulevard.com1 (14%)
unit42.paloaltonetworks.com1 (14%)
windowsforum.com1 (14%)

External references

NVD · cve.org · CISA KEV

All cited sources (7)

Items in briefs about Samsung MagicINFO 9 Server — unauthenticated path traversal / file write (CVSS 9.8, Mirai, KEV deadline 2026-05-08)

No parsed item heading or body matches this entity yet. Items match by exact CVE id (for CVE entities), by lead-segment substring of the title in the item heading or body, or by a distinctive anchor token from the title appearing in the item heading. Coverage that lives inside a broader section (no per-item heading) is captured by the Story timeline above.