CVE-2025-53080_CVE-2025-53080

7.1 / 10

HIGH

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H

Description

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Samsung DMS(Data Management Server) allows authenticated attackers to create arbitrary files in unintended locations on the filesystem

Basic Information

ID CVE-2025-53080

Source samsung.tv_appliance

Published Jul 29, 2025 at 05:05

Modified Jul 29, 2025 at 14:44

Affected Product

Vendor Samsung Electronics

Product Data Management Server

Version 2.0.0

Affected Versions Samsung Electronics Data Management Server 2.0.0
Samsung Electronics Data Management Server 2.5.0.17
Samsung Electronics Data Management Server 2.7.0.15

CWE Classification

CWE-22

References

security.samsungda.com /securityUpdates.html

{
    "lastseen": "",
    "description": "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Samsung DMS(Data Management Server) allows authenticated attackers to create arbitrary files in unintended locations on the filesystem",
    "published": "2025-07-29T05:05:14.690Z",
    "modified": "2025-07-29T14:44:48.824Z",
    "type": "cve",
    "title": "CVE-2025-53080",
    "source": "samsung.tv_appliance",
    "references": "https://security.samsungda.com/securityUpdates.html",
    "id": "CVE-2025-53080",
    "bulletinFamily": "",
    "cwe": [
        "CWE-22"
    ],
    "cvelist": null,
    "sourceData": "Samsung Electronics Data Management Server 2.0.0\nSamsung Electronics Data Management Server 2.5.0.17\nSamsung Electronics Data Management Server 2.7.0.15",
    "sourceHref": "",
    "cvss": {
        "score": 7.1,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Data Management Server",
    "version": "2.0.0",
    "vendor": "Samsung Electronics",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}