CVE-2025-53077

Summary

An execution after redirect in Samsung DMS(Data Management Server) allows attackers to execute limited functions without permissions. An attacker could compromise the integrity of the platform by executing this vulnerability.

Affected Software

VendorProductVersion RangeStatus
Samsung ElectronicsDMS(Data Management Server)2.0.0 < 2.3.13.1affected
Samsung ElectronicsDMS(Data Management Server)2.5.0.17 < 2.6.14.1affected
Samsung ElectronicsDMS(Data Management Server)2.7.0.15 < 2.9.3.6affected

Weaknesses

  • CWE-698: CWE-698 Execution After Redirect (EAR)

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References