6.5
CVE-2025-53077
- EPSS 0.15%
- Veröffentlicht 29.07.2025 05:03:41
- Zuletzt bearbeitet 11.08.2025 19:05:41
- Quelle PSIRT@samsung.com
- CVE-Watchlists
- Unerledigt
An execution after redirect in Samsung DMS(Data Management Server) allows attackers to execute limited functions without permissions. An attacker could compromise the integrity of the platform by executing this vulnerability.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Samsung ≫ Data Management Server Firmware Version >= 2.0.0 < 2.3.13.1
Samsung ≫ Data Management Server Firmware Version >= 2.5.0.17 < 2.6.14.1
Samsung ≫ Data Management Server Firmware Version >= 2.7.0.15 < 2.9.3.6
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.15% | 0.344 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| PSIRT@samsung.com | 6.5 | 3.9 | 2.5 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
|
CWE-698 Execution After Redirect (EAR)
The web application sends a redirect to another location, but instead of exiting, it executes additional code.