CVE-2025-53396

🗓️ 28 Aug 2025 08:27:58Reported by jpcertType

CVE-2025-53396: Incorrect permission assignment in SS1 prior to 16.0.0.10 may allow users to obtain root privileges.

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2025-53396	28 Aug 202514:20	–	circl
CNNVD	DOS & CO SS1 安全漏洞	28 Aug 202500:00	–	cnnvd
Cvelist	CVE-2025-53396	28 Aug 202508:27	–	cvelist
EUVD	EUVD-2025-28525	3 Oct 202520:07	–	euvd
Japan Vulnerability Notes	JVN#99577552: Multiple vulnerabilities in SS1	27 Aug 202500:00	–	jvn
Japan Vulnerability Notes	Multiple vulnerabilities in SS1	27 Aug 202506:13	–	jvn
NVD	CVE-2025-53396	28 Aug 202509:15	–	nvd
Positive Technologies	PT-2025-34974	28 Aug 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-53396	30 Aug 202518:17	–	redhatcve
Vulnrichment	CVE-2025-53396	28 Aug 202508:27	–	vulnrichment

[
  {
    "vendor": "DOS Co., Ltd.",
    "product": "SS1",
    "versions": [
      {
        "version": "Ver.16.0.0.10 and earlier (Media version:16.0.0a and earlier) (Affected under MacOS environment only)",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "DOS Co., Ltd.",
    "product": "SS1 Cloud",
    "versions": [
      {
        "version": "Ver.2.1.3 and earlier (Affected under MacOS environment only)",
        "status": "affected"
      }
    ]
  }
]

Source	Link
dos-osaka	www.dos-osaka.co.jp/news/2025/08/250827.html
jvn	www.jvn.jp/en/jp/JVN99577552/

15 Apr 2026 00:35Current

6.8Medium risk

Vulners AI Score6.8

CVSS 37

CVSS 47.3

EPSS0.0002

SSVC

CWE-732