Samsung: >> Data Management Server Firmware Security Vulnerabilities
An 'Arbitrary File Deletion' in Samsung DMS(Data Management Server) allows attackers to delete arbitrary files from unintended locations on the filesystem. Exploitation is restricted to specific, authorized private IP addresses.
CVSS Score
6.1
EPSS Score
0.001
Published
2025-07-29
An 'Arbitrary File Creation' in Samsung DMS(Data Management Server) allows attackers to create arbitrary files in unintended locations on the filesystem. Exploitation is restricted to specific, authorized private IP addresses.
CVSS Score
6.4
EPSS Score
0.0
Published
2025-07-29
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Samsung DMS(Data Management Server) allows authenticated attackers to create arbitrary files in unintended locations on the filesystem
CVSS Score
7.1
EPSS Score
0.0
Published
2025-07-29
An execution after redirect in Samsung DMS(Data Management Server) allows attackers to execute limited functions without permissions. An attacker could compromise the integrity of the platform by executing this vulnerability.
CVSS Score
6.5
EPSS Score
0.001
Published
2025-07-29
Deserialization of Untrusted Data in Samsung DMS(Data Management Server) allows attackers to execute arbitrary code via write file to system
CVSS Score
8.0
EPSS Score
0.001
Published
2025-07-29
Absolute Path Traversal in Samsung DMS(Data Management Server) allows authenticated attacker (Administrator) to read sensitive files
CVSS Score
4.9
EPSS Score
0.0
Published
2025-07-29