Samsung Data Management Server Firmware vulnerabilities
6 known vulnerabilities affecting samsung/data_management_server_firmware.
Total CVEs
6
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL3MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2025-53081CRITICALCVSS 9.1≥ 2.0.0, < 2.3.13.1≥ 2.5.0.17, < 2.6.14.1+1 more2025-07-29
CVE-2025-53081 [MEDIUM] CWE-22 CVE-2025-53081: An 'Arbitrary File Creation' in Samsung DMS(Data Management Server) allows attackers to create arbit
An 'Arbitrary File Creation' in Samsung DMS(Data Management Server) allows attackers to create arbitrary files in unintended locations on the filesystem. Exploitation is restricted to specific, authorized private IP addresses.
nvd
CVE-2025-53082CRITICALCVSS 9.1≥ 2.0.0, < 2.3.13.1≥ 2.5.0.17, < 2.6.14.1+1 more2025-07-29
CVE-2025-53082 [MEDIUM] CWE-23 CVE-2025-53082: An 'Arbitrary File Deletion' in Samsung DMS(Data Management Server) allows attackers to delete arbit
An 'Arbitrary File Deletion' in Samsung DMS(Data Management Server) allows attackers to delete arbitrary files from unintended locations on the filesystem. Exploitation is restricted to specific, authorized private IP addresses.
nvd
CVE-2025-53078CRITICALCVSS 9.8≥ 2.0.0, < 2.3.13.1≥ 2.5.0.17, < 2.6.14.1+1 more2025-07-29
CVE-2025-53078 [HIGH] CWE-502 CVE-2025-53078: Deserialization of Untrusted Data in Samsung DMS(Data Management Server) allows attackers to execute
Deserialization of Untrusted Data in Samsung DMS(Data Management Server) allows attackers to execute arbitrary code via write file to system
nvd
CVE-2025-53080MEDIUMCVSS 6.5≥ 2.0.0, < 2.3.13.1≥ 2.5.0.17, < 2.6.14.1+1 more2025-07-29
CVE-2025-53080 [HIGH] CWE-22 CVE-2025-53080: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Samsung DMS(Data M
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Samsung DMS(Data Management Server) allows authenticated attackers to create arbitrary files in unintended locations on the filesystem
nvd
CVE-2025-53079MEDIUMCVSS 4.9≥ 2.0.0, < 2.3.13.1≥ 2.5.0.17, < 2.6.14.1+1 more2025-07-29
CVE-2025-53079 [MEDIUM] CWE-36 CVE-2025-53079: Absolute Path Traversal in Samsung DMS(Data Management Server) allows authenticated attacker (Admini
Absolute Path Traversal in Samsung DMS(Data Management Server) allows authenticated attacker (Administrator) to read sensitive files
nvd
CVE-2025-53077MEDIUMCVSS 6.5≥ 2.0.0, < 2.3.13.1≥ 2.5.0.17, < 2.6.14.1+1 more2025-07-29
CVE-2025-53077 [MEDIUM] CWE-698 CVE-2025-53077: An execution after redirect in Samsung DMS(Data Management Server) allows attackers to execute limit
An execution after redirect in Samsung DMS(Data Management Server) allows attackers to execute limited functions without permissions. An attacker could compromise the integrity of the platform by executing this vulnerability.
nvd