119 matches found
Design/Logic Flaw
A Memory Allocation with Excessive Size Value vulnerablity in the TEERealloc function in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service DoS by invoking the function TEERealloc with an excessive number for the parameter len...
Buffer overflow
A Buffer Access with Incorrect Length Value vulnerablity in the TEECipherUpdate function in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service DoS by invoking the function TEECipherUpdate with an excessive size value of srcLen...
Null pointer dereference
A NULL pointer dereference issue in the TEEMACCompareFinal function in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service DoS by invoking the function TEEMACCompareFinal with a NULL pointer for the parameter operation...
Buffer overflow
A Buffer Access with Incorrect Length Value vulnerablity in the TEEMACComputeFinal function in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service DoS by invoking the function TEEMACComputeFinal with an excessive size value of messageLen...
Buffer overflow
A Buffer Access with Incorrect Length Value vulnerablity in the TEEMACUpdate function in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service DoS by invoking the function TEEMACUpdate with an excessive size value of chunkSize...
CVE-2022-40757
CVE-2022-40757 affects Samsung mTower prior to 0.3.0, where a buffer access in TEE_MACComputeFinal with an incorrect length (messageLen) can be triggered by a trusted application, causing a Denial of Service. The issue originates in the TEE_MACComputeFinal function and is documented across multip...
CVE-2022-40757
A Buffer Access with Incorrect Length Value vulnerablity in the TEEMACComputeFinal function in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service DoS by invoking the function TEEMACComputeFinal with an excessive size value of messageLen...
CVE-2022-40758
A Buffer Access with Incorrect Length Value vulnerablity in the TEECipherUpdate function in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service DoS by invoking the function TEECipherUpdate with an excessive size value of srcLen...
CVE-2022-40758
CVE-2022-40758 affects Samsung mTower up to version 0.3.0, where a Buffer Access with Incorrect Length Value in the TEE_CipherUpdate function can be triggered by a trusted application using an excessive srcLen, causing a Denial of Service. The issue is rooted in incorrect length handling in TEE_C...
CVE-2022-40759
CVE-2022-40759 affects Samsung mTower up to version 0.3.0. A NULL pointer dereference in TEE_MACCompareFinal when the operation parameter is NULL can cause a Denial of Service in trusted applications. The main description provides no exploit details. A PT-Security advisory (PT-2022-25519) notes a...
CVE-2022-40759
A NULL pointer dereference issue in the TEEMACCompareFinal function in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service DoS by invoking the function TEEMACCompareFinal with a NULL pointer for the parameter operation...
CVE-2022-40760
CVE-2022-40760 affects Samsung mTower up to version 0.3.0, where a vulnerability in the TEE_MACUpdate function allows a trusted application to trigger a Denial of Service by passing an oversized chunkSize to TEE_MACUpdate. The root cause is a buffer access with an incorrect length value. Impact i...
CVE-2022-40760
A Buffer Access with Incorrect Length Value vulnerablity in the TEEMACUpdate function in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service DoS by invoking the function TEEMACUpdate with an excessive size value of chunkSize...
CVE-2022-40761
The function teeobjfree in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service DoS by invoking the function TEEAllocateOperation with a disturbed heap layout, related to uteecrypobjalloc...
CVE-2022-40761
Samsung mTower
CVE-2022-40762
Samsung mTower prior to version 0.3.0 is vulnerable to a Denial of Service due to a memory allocation issue in the TEE_Realloc function when an excessively large len is supplied. Root cause: over-valued memory allocation in TEE_Realloc. Affected component: Samsung mTower’s TEE_Realloc handling. I...
CVE-2022-40762
A Memory Allocation with Excessive Size Value vulnerablity in the TEERealloc function in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service DoS by invoking the function TEERealloc with an excessive number for the parameter len...
PT-2022-25518 · Samsung · Samsung Mtower
Name of the Vulnerable Software and Affected Versions: Samsung mTower versions 0.3.0 and earlier Description: A Buffer Access with Incorrect Length Value issue in the TEE CipherUpdate function allows a trusted application to trigger a Denial of Service DoS by invoking the function TEE CipherUpdat...
SAMSUNG mTower 安全漏洞
SAMSUNG mTower is a new Trusted Execution Environment TEE from Samsung South Korea. A security vulnerability exists in SAMSUNG mTower versions prior to 0.3.0, which stems from an over-valued memory allocation in its TEERealloc function that allows a trusted application to trigger a denial of...
SAMSUNG mTower 缓冲区错误漏洞
SAMSUNG mTower is a new Trusted Execution Environment TEE from Samsung South Korea. A security vulnerability exists in SAMSUNG mTower versions prior to 0.3.0, which stems from a vulnerable buffer access with an incorrect length value in its TEEMACUpdate function that allows a trusted application ...