6.5
CVE-2025-53077
- EPSS 0.14%
- Published 29.07.2025 05:03:41
- Last modified 11.08.2025 19:05:41
- Source PSIRT@samsung.com
- Teams watchlist Login
- Open Login
An execution after redirect in Samsung DMS(Data Management Server) allows attackers to execute limited functions without permissions. An attacker could compromise the integrity of the platform by executing this vulnerability.
Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
This information is available to logged-in users. Login
Data is provided by the National Vulnerability Database (NVD)
Samsung ≫ Data Management Server Firmware Version >= 2.0.0 < 2.3.13.1
Samsung ≫ Data Management Server Firmware Version >= 2.5.0.17 < 2.6.14.1
Samsung ≫ Data Management Server Firmware Version >= 2.7.0.15 < 2.9.3.6
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.14% | 0.35 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| PSIRT@samsung.com | 6.5 | 3.9 | 2.5 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
|
CWE-698 Execution After Redirect (EAR)
The web application sends a redirect to another location, but instead of exiting, it executes additional code.