CVE-2025-53079_CVE-2025-53079

4.9 / 10

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Description

Absolute Path Traversal in Samsung DMS(Data Management Server) allows authenticated attacker (Administrator) to read sensitive files

Basic Information

ID CVE-2025-53079

Source samsung.tv_appliance

Published Jul 29, 2025 at 05:04

Modified Jul 29, 2025 at 14:51

Affected Product

Vendor Samsung Electronics

Product Data Management Server

Version 2.0.0

Affected Versions Samsung Electronics Data Management Server 2.0.0
Samsung Electronics Data Management Server 2.5.0.17
Samsung Electronics Data Management Server 2.7.0.15

CWE Classification

CWE-36

References

security.samsungda.com /securityUpdates.html

{
    "lastseen": "",
    "description": "Absolute Path Traversal in Samsung DMS(Data Management Server) allows authenticated attacker (Administrator) to read sensitive files",
    "published": "2025-07-29T05:04:48.482Z",
    "modified": "2025-07-29T14:51:16.460Z",
    "type": "cve",
    "title": "CVE-2025-53079",
    "source": "samsung.tv_appliance",
    "references": "https://security.samsungda.com/securityUpdates.html",
    "id": "CVE-2025-53079",
    "bulletinFamily": "",
    "cwe": [
        "CWE-36"
    ],
    "cvelist": null,
    "sourceData": "Samsung Electronics Data Management Server 2.0.0\nSamsung Electronics Data Management Server 2.5.0.17\nSamsung Electronics Data Management Server 2.7.0.15",
    "sourceHref": "",
    "cvss": {
        "score": 4.9,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Data Management Server",
    "version": "2.0.0",
    "vendor": "Samsung Electronics",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}