← Back

CVE-2025-53078

nvd nist
Published: Jul 29, 2025Modified: Aug 11, 2025

JSON object

Loading...
9.8
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 5.9
Source: NVD

Description

Deserialization of Untrusted Data in Samsung DMS(Data Management Server) allows attackers to execute arbitrary code via write file to system

Affected (3)

Samsung
1 product
Data Management Server Firmware
Configuration A
3 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Samsung
Data Management Server Firmware
From 2.0.0 to 2.3.13.1
Data Management Server Firmware
From 2.5.0.17 to 2.6.14.1
Data Management Server Firmware
From 2.7.0.15 to 2.9.3.6
Running on/withPlatform Versions
Samsung
Data Management Server
All versions

Related CWEs

CWE-502
Deserialization of Untrusted Data
The product deserializes untrusted data without sufficiently verifying that the resulting data will be valid.

References (1)

Source: PSIRT@samsung.com
Vendor Advisory

Timeline

No history available yet.