本ページは samsung data_management_server_firmware に影響する公開済み CVE(NVD の CPE 経由で関連付け)を列挙します。各行に深刻度指標・概要・公開日が含まれます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2025-53082 | An 'Arbitrary File Deletion' in Samsung DMS(Data Management Server) allows attackers to delete arbitrary files from unintended locations on the filesystem. Exploitation is restricted to specific, authorized private IP addresses. | [email protected] | 6.1 | 0.43% | 2025-07-29 | 2026-06-17 |
| CVE-2025-53081 | An 'Arbitrary File Creation' in Samsung DMS(Data Management Server) allows attackers to create arbitrary files in unintended locations on the filesystem. Exploitation is restricted to specific, authorized private IP addresses. | [email protected] | 6.4 | 0.37% | 2025-07-29 | 2026-06-17 |
| CVE-2025-53080 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Samsung DMS(Data Management Server) allows authenticated attackers to create arbitrary files in unintended locations on the filesystem | [email protected] | 7.1 | 0.28% | 2025-07-29 | 2026-06-17 |
| CVE-2025-53079 | Absolute Path Traversal in Samsung DMS(Data Management Server) allows authenticated attacker (Administrator) to read sensitive files | [email protected] | 4.9 | 0.44% | 2025-07-29 | 2026-06-17 |
| CVE-2025-53078 | Deserialization of Untrusted Data in Samsung DMS(Data Management Server) allows attackers to execute arbitrary code via write file to system | [email protected] | 8.0 | 0.37% | 2025-07-29 | 2026-06-17 |
| CVE-2025-53077 | An execution after redirect in Samsung DMS(Data Management Server) allows attackers to execute limited functions without permissions. An attacker could compromise the integrity of the platform by executing this vulnerability. | [email protected] | 6.5 | 0.31% | 2025-07-29 | 2026-06-17 |