Primary

Context

Samsung DMS Arbitrary File Deletion Vulnerability

Vulnerability

A vulnerability allowing arbitrary file deletion has been identified in Samsung Data Management Server (DMS) versions 2.9.3.5 to 2.7.0.15, 2.6.14.0 to 2.5.0.17, and 2.3.13.0 to 2.0.0. This vulnerability allows attackers to delete files from unintended locations on the filesystem. Exploitation is limited to specific authorized private IP addresses.

Impact

Exploitation of this vulnerability allows for unauthorized deletion of files from the filesystem, potentially leading to loss of data or disruption of services that rely on the deleted files.

Remediation

The official patch for this vulnerability has been released and is available for users to apply.

Added: Jul 29, 2025, 6:56 AM

Updated: Jul 29, 2025, 6:56 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.9

remediation

0.0

relevance

0.3

threat

0.1

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.9

remediation

0.0

relevance

0.3

threat

0.1

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Samsung DMS Arbitrary File Deletion Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating