4 matches found
CVE-2022-38155
TEEMalloc in Samsung mTower through 0.3.0 allows a trusted application to achieve Excessive Memory Allocation via a large len value, as demonstrated by a Numaker-PFM-M2351 TEE kernel crash...
PT-2022-25518 · Samsung · Samsung Mtower
Name of the Vulnerable Software and Affected Versions: Samsung mTower versions 0.3.0 and earlier Description: A Buffer Access with Incorrect Length Value issue in the TEE CipherUpdate function allows a trusted application to trigger a Denial of Service DoS by invoking the function TEE CipherUpdat...
SAMSUNG mTower 缓冲区错误漏洞
SAMSUNG mTower is a new Trusted Execution Environment TEE from Samsung South Korea. A security vulnerability exists in SAMSUNG mTower versions prior to 0.3.0, which stems from an "incorrect length buffer access" vulnerability in the TEECipherUpdate function that could allow a trusted application ...
PT-2022-22972 · Samsung · Samsung Mtower
Name of the Vulnerable Software and Affected Versions: Samsung mTower version 0.3.0 Description: The issue allows a trusted application to trigger a memory overwrite, denial of service, and information disclosure by invoking the function TEE PopulateTransientObject with a large number in the...