119 matches found
CVE-2022-39829
Samsung mTower 0.3.0 and earlier has a NULL pointer dereference in aes256_encrypt caused by a missing check of EVP_CIPHER_CTX_new. CVE-2022-39829 affects the module in the Trusted Execution Environment and is rated HIGH (CVSS 3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H). Connected sources confirm th...
CVE-2022-39830
signpFwInfo in Samsung mTower through 0.3.0 has a missing check on the return value of ECKEYsetpublickeyaffinecoordinates, leading to a denial of service...
CVE-2022-39830
Samsung mTower
PT-2022-25019 · Samsung · Samsung Mtower
Name of the Vulnerable Software and Affected Versions: Samsung mTower versions 0.3.0 and earlier Description: The issue is related to a NULL pointer dereference in the aes256 encrypt function due to a missing check on the return value of EVP CIPHER CTX new. Recommendations: For Samsung mTower...
SAMSUNG mTower 代码问题漏洞
SAMSUNG mTower is a new Trusted Execution Environment TEE from Samsung South Korea. A security vulnerability exists in SAMSUNG mTower 0.3.0 and earlier versions, which stems from a lack of checking of the return value of EVPCIPHERCTXnew and a NULL pointer dereference in aes256encrypt...
SAMSUNG mTower 安全漏洞
SAMSUNG mTower is a new Trusted Execution Environment TEE from Samsung South Korea. A security vulnerability exists in SAMSUNG mTower 0.3.0 and earlier versions, which stems from a denial of service due to a lack of checking of the return value of ECKEYsetpublickeyaffinecoordinates by signpFwInfo...
PT-2022-25021 · Samsung · Samsung Mtower
Name of the Vulnerable Software and Affected Versions: Samsung mTower versions 0.3.0 and earlier Description: The issue is related to a missing check on the return value of EC KEY set public key affine coordinates in the sign pFwInfo function, leading to a denial of service. Recommendations: For...
SAMSUNG mTower 安全漏洞
SAMSUNG mTower is a new Trusted Execution Environment TEE from Samsung South Korea. A security vulnerability exists in SAMSUNG mTower 0.3.0 and earlier versions, which stems from a denial of service due to a lack of checking of the ECKEYsetprivatekey return value in signpFwInfo...
CVE-2022-36622
Samsung Electronics mTower v0.3.0 and earlier was discovered to contain a NULL pointer dereference via the function TEEGetObjectInfo1...
CVE-2022-36622
Samsung Electronics mTower v0.3.0 and earlier was discovered to contain a NULL pointer dereference via the function TEEGetObjectInfo1...
CVE-2022-36621
Samsung Electronics mTower v0.3.0 and earlier was discovered to contain a NULL pointer dereference via the function TEEAllocateTransientObject...
CVE-2022-36621
Samsung Electronics mTower v0.3.0 and earlier was discovered to contain a NULL pointer dereference via the function TEEAllocateTransientObject...
CVE-2022-36622
Samsung Electronics mTower v0.3.0 and earlier was discovered to contain a NULL pointer dereference via the function TEEGetObjectInfo1...
Null pointer dereference
Samsung Electronics mTower v0.3.0 and earlier was discovered to contain a NULL pointer dereference via the function TEEGetObjectInfo1...
Null pointer dereference
Samsung Electronics mTower v0.3.0 and earlier was discovered to contain a NULL pointer dereference via the function TEEAllocateTransientObject...
CVE-2022-36622
Samsung Electronics mTower v0.3.0 and earlier was discovered to contain a NULL pointer dereference via the function TEEGetObjectInfo1...
CVE-2022-36622
CVE-2022-36622 affects Samsung Electronics mTower, v0.3.0 and earlier. A NULL pointer dereference occurs in TEE_GetObjectInfo1, enabling a high-severity impact (CVSS 7.5, NETWORK/LOW/NOAUTH/NO-UI) focused on availability risk. Public exploit details are not provided in the supplied documents. Con...
CVE-2022-36621
CVE-2022-36621 affects Samsung Electronics mTower v0.3.0 and earlier, due to a NULL pointer dereference in TEE_AllocateTransientObject. The CVE entry notes a high impact on availability (CVSS 3.1 base 7.5, network attack vector, no privileges required, no user interaction). Connected documents co...
CVE-2022-36621
Samsung Electronics mTower v0.3.0 and earlier was discovered to contain a NULL pointer dereference via the function TEEAllocateTransientObject...
SAMSUNG mTower 代码问题漏洞
SAMSUNG mTower is a new Trusted Execution Environment TEE from Samsung South Korea. A security vulnerability exists in SAMSUNG mTower version v0.3.0 and prior versions, which originates from the discovery of a NULL pointer dereference via the function TEEAllocateTransientObject...