CVE Details
Basic Information
| Title | CVE-2025-53081 |
|---|---|
| Type | cve |
| Published | 2025-07-29T05:06:47.194Z |
| Modified | 2025-07-29T05:08:56.100Z |
Product Information
| Vendor | Samsung Electronics |
|---|---|
| Product | Data Management Server |
| Version | 2.0.0 |
CVSS Information
| Base Score | 6.4 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H |
AI Analysis
| AI Description | A vulnerability in Samsung DMS allows attackers to create arbitrary files on the filesystem, potentially leading to unauthorized access or data tampering. Exploitation is limited to specific authorized private IP addresses. |
|---|---|
| AI Severity | Medium |
| AI Vendor | Samsung Electronics |
| AI Product | Data Management Server |
| AI Version | 2.0.0, 2.5.0.17, 2.7.0.15 |
Affected Products
- Samsung Electronics Data Management Server 2.0.0
- Samsung Electronics Data Management Server 2.5.0.17
- Samsung Electronics Data Management Server 2.7.0.15
Additional Information
| CWE List | CWE-22 |
|---|---|
| Source | samsung.tv_appliance |
Description
An ‘Arbitrary File Creation’ in Samsung DMS(Data Management Server) allows attackers to create arbitrary files in unintended locations on the filesystem. Exploitation is restricted to specific, authorized private IP addresses.