Home

Description

An execution after redirect in Samsung DMS(Data Management Server) allows attackers to execute limited functions without permissions. An attacker could compromise the integrity of the platform by executing this vulnerability.

PUBLISHED Reserved 2025-06-24 | Published 2025-07-29 | Updated 2025-07-29 | Assigner samsung.tv_appliance




MEDIUM: 6.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

Problem types

CWE-698 Execution After Redirect (EAR)

Product status

Default status
unaffected

2.0.0 (custom) before 2.3.13.1
affected

2.5.0.17 (custom) before 2.6.14.1
affected

2.7.0.15 (custom) before 2.9.3.6
affected

Credits

Noam Moshe of Claroty Team82 finder

References

security.samsungda.com/securityUpdates.html

cve.org (CVE-2025-53077)

nvd.nist.gov (CVE-2025-53077)

Download JSON