CVE-2025-53081CRITICAL 9.1EPSS p28.7%

CVE-2025-53081CVE-2025-53081

Description

An 'Arbitrary File Creation' in Samsung DMS(Data Management Server) allows attackers to create arbitrary files in unintended locations on the filesystem. Exploitation is restricted to specific, authorized private IP addresses.

Scoring

CVSS 3.19.1 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
EPSS0.37% probability of exploitation · percentile 28.7% · 2026-06-18T12:00:27Z
Published2025-07-29
Last modified2025-08-11

Underlying weaknesses· 1

CWE-22

References

  1. https://security.samsungda.com/securityUpdates.html

1

TypeTargetConfidenceTier
WeaknessImproper Limitation of a Pathname to a Restricted Directory ('Path Traversal')cwe-220%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-53082
CVE
CVE-2025-53078
CVE
Samsung MagicINFO 9 Server Path Traversal Vulnerability
CVE
CVE-2025-20949
CVE
Samsung Mobile Devices Improper Access Control Vulnerability
CVE
CVE-2025-54438
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.