CVE-2025-53082

CWE-234 documents4 sources

Severity

9.1CRITICAL

EPSS

0.5%

top 32.30%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Samsung Electronics Data Management Server Samsung Data Management Server Firmware

Timeline

PublishedJul 29

Description

An 'Arbitrary File Deletion' in Samsung DMS(Data Management Server) allows attackers to delete arbitrary files from unintended locations on the filesystem. Exploitation is restricted to specific, authorized private IP addresses.

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:HExploitability: 0.9 | Impact: 5.2

Affected Packages2 packages

▶CVEListV5samsung_electronics/data_management_server2.0.0 — 2.3.13.1+2

▶NVDsamsung/data_management2.0.0 — 2.3.13.1+2

🔴Vulnerability Details

CVEList

CVE-2025-53082: An 'Arbitrary File Deletion' in Samsung DMS(Data Management Server) allows attackers to delete arbitrary files from unintended locations on the filesy↗2025-07-29

▶

GHSA

GHSA-f463-v52q-mjh6: An 'Arbitrary File Deletion' in Samsung DMS(Data Management Server) allows attackers to delete arbitrary files from unintended locations on the filesy↗2025-07-29

▶

📋Vendor Advisories

Microsoft

virtio_net: Add hash_key_length check↗2024-11-12

▶