Samsung Electronics Data Management Server vulnerabilities

CVE-2025-53078 [CRITICAL] CWE-502 CVE-2025-53078: Deserialization of Untrusted Data in Samsung DMS(Data Management Server) allows attackers to execute Deserialization of Untrusted Data in Samsung DMS(Data Management Server) allows attackers to execute arbitrary code via write file to system

CVE-2025-53081 [CRITICAL] CWE-22 CVE-2025-53081: An 'Arbitrary File Creation' in Samsung DMS(Data Management Server) allows attackers to create arbit An 'Arbitrary File Creation' in Samsung DMS(Data Management Server) allows attackers to create arbitrary files in unintended locations on the filesystem. Exploitation is restricted to specific, authorized private IP addresses.

CVE-2025-53082 [CRITICAL] CWE-23 CVE-2025-53082: An 'Arbitrary File Deletion' in Samsung DMS(Data Management Server) allows attackers to delete arbit An 'Arbitrary File Deletion' in Samsung DMS(Data Management Server) allows attackers to delete arbitrary files from unintended locations on the filesystem. Exploitation is restricted to specific, authorized private IP addresses.

CVE-2025-53080 [MEDIUM] CWE-22 CVE-2025-53080: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Samsung DMS(Data M Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Samsung DMS(Data Management Server) allows authenticated attackers to create arbitrary files in unintended locations on the filesystem

CVE-2025-53079 [MEDIUM] CWE-36 CVE-2025-53079: Absolute Path Traversal in Samsung DMS(Data Management Server) allows authenticated attacker (Admini Absolute Path Traversal in Samsung DMS(Data Management Server) allows authenticated attacker (Administrator) to read sensitive files