6 matches found
CVE-2025-53078
Samsung DMS (Data Management Server) is affected by CVE-2025-53078 due to deserialization of untrusted data, enabling attackers to execute arbitrary code by writing files to the system. Affected component is the Samsung DMS data management server; root cause is untrusted data deserialization that...
CVE-2025-53077
Samsung DMS (Data Management Server) is affected by CVE-2025-53077, with multiple connected reports describing a set of issues including execution after redirect, deserialization of untrusted data, absolute path traversal, and path traversal that can allow authenticated or unauthenticated actions...
CVE-2025-53080
CVE-2025-53080 documents an improper limitation of a pathname to a restricted directory in Samsung DMS (Data Management Server). This path traversal vulnerability can enable an authenticated attacker to create arbitrary files in unintended locations on the filesystem. Connected sources confirm th...
CVE-2025-53081
Samsung DMS (Data Management Server) exposes CVE-2025-53081: an Arbitrary File Creation vulnerability that can let an attacker create arbitrary files in unintended filesystem locations. Exploitation is restricted to specific, authorized private IP addresses (internal exposure). The issue is repor...
CVE-2025-53082
CVE-2025-53082 affects Samsung DMS (Data Management Server). The vulnerability enables an attacker to delete arbitrary files on the filesystem. Exploitation is restricted to specific, authorized private IP addresses. Sources consistently describe an Arbitrary File Deletion in Samsung DMS; no conc...
CVE-2025-53079
Samsung DMS (Data Management Server) is affected by an Absolute Path Traversal vulnerability (CVE-2025-53079). The issue allows an authenticated administrator to read sensitive files, due to a path traversal flaw in Samsung DMS. The CVSS 3.1 base score is 4.9 (Medium) with Attack Vector Network, ...