Lucene search
K

119 matches found

CVE
CVE
added 2022/09/05 3:43 a.m.68 views

CVE-2022-39829

Samsung mTower 0.3.0 and earlier has a NULL pointer dereference in aes256_encrypt caused by a missing check of EVP_CIPHER_CTX_new. CVE-2022-39829 affects the module in the Trusted Execution Environment and is rated HIGH (CVSS 3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H). Connected sources confirm th...

7.5CVSS7.4AI score0.0103EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2022/09/05 3:43 a.m.21 views

CVE-2022-39830

signpFwInfo in Samsung mTower through 0.3.0 has a missing check on the return value of ECKEYsetpublickeyaffinecoordinates, leading to a denial of service...

7.6AI score0.0103EPSS
Exploits1References3
CVE
CVE
added 2022/09/05 3:43 a.m.56 views

CVE-2022-39830

Samsung mTower

7.5CVSS7.4AI score0.0103EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2022/09/05 12:0 a.m.4 views

PT-2022-25019 · Samsung · Samsung Mtower

Name of the Vulnerable Software and Affected Versions: Samsung mTower versions 0.3.0 and earlier Description: The issue is related to a NULL pointer dereference in the aes256 encrypt function due to a missing check on the return value of EVP CIPHER CTX new. Recommendations: For Samsung mTower...

7.5CVSS7.2AI score0.0103EPSS
Exploits1References6
CNNVD
CNNVD
added 2022/09/05 12:0 a.m.4 views

SAMSUNG mTower 代码问题漏洞

SAMSUNG mTower is a new Trusted Execution Environment TEE from Samsung South Korea. A security vulnerability exists in SAMSUNG mTower 0.3.0 and earlier versions, which stems from a lack of checking of the return value of EVPCIPHERCTXnew and a NULL pointer dereference in aes256encrypt...

7.5CVSS7.3AI score0.0103EPSS
Exploits1References5
CNNVD
CNNVD
added 2022/09/05 12:0 a.m.4 views

SAMSUNG mTower 安全漏洞

SAMSUNG mTower is a new Trusted Execution Environment TEE from Samsung South Korea. A security vulnerability exists in SAMSUNG mTower 0.3.0 and earlier versions, which stems from a denial of service due to a lack of checking of the return value of ECKEYsetpublickeyaffinecoordinates by signpFwInfo...

7.5CVSS7.3AI score0.0103EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2022/09/05 12:0 a.m.4 views

PT-2022-25021 · Samsung · Samsung Mtower

Name of the Vulnerable Software and Affected Versions: Samsung mTower versions 0.3.0 and earlier Description: The issue is related to a missing check on the return value of EC KEY set public key affine coordinates in the sign pFwInfo function, leading to a denial of service. Recommendations: For...

7.5CVSS7.3AI score0.0103EPSS
Exploits1References6
CNNVD
CNNVD
added 2022/09/05 12:0 a.m.6 views

SAMSUNG mTower 安全漏洞

SAMSUNG mTower is a new Trusted Execution Environment TEE from Samsung South Korea. A security vulnerability exists in SAMSUNG mTower 0.3.0 and earlier versions, which stems from a denial of service due to a lack of checking of the ECKEYsetprivatekey return value in signpFwInfo...

7.5CVSS7.3AI score0.0103EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2022/09/01 9:15 p.m.2 views

CVE-2022-36622

Samsung Electronics mTower v0.3.0 and earlier was discovered to contain a NULL pointer dereference via the function TEEGetObjectInfo1...

7.5CVSS7.1AI score0.01127EPSS
Exploits0References5
NVD
NVD
added 2022/09/01 9:15 p.m.21 views

CVE-2022-36622

Samsung Electronics mTower v0.3.0 and earlier was discovered to contain a NULL pointer dereference via the function TEEGetObjectInfo1...

7.5CVSS0.01127EPSS
Exploits0References4
OSV
OSV
added 2022/09/01 9:15 p.m.17 views

CVE-2022-36621

Samsung Electronics mTower v0.3.0 and earlier was discovered to contain a NULL pointer dereference via the function TEEAllocateTransientObject...

7.5CVSS7.3AI score
Exploits0References3
NVD
NVD
added 2022/09/01 9:15 p.m.21 views

CVE-2022-36621

Samsung Electronics mTower v0.3.0 and earlier was discovered to contain a NULL pointer dereference via the function TEEAllocateTransientObject...

7.5CVSS0.01093EPSS
Exploits0References3
OSV
OSV
added 2022/09/01 9:15 p.m.17 views

CVE-2022-36622

Samsung Electronics mTower v0.3.0 and earlier was discovered to contain a NULL pointer dereference via the function TEEGetObjectInfo1...

7.5CVSS7.3AI score
Exploits0References4
Prion
Prion
added 2022/09/01 9:15 p.m.17 views

Null pointer dereference

Samsung Electronics mTower v0.3.0 and earlier was discovered to contain a NULL pointer dereference via the function TEEGetObjectInfo1...

5CVSS7.6AI score0.01127EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2022/09/01 9:15 p.m.16 views

Null pointer dereference

Samsung Electronics mTower v0.3.0 and earlier was discovered to contain a NULL pointer dereference via the function TEEAllocateTransientObject...

5CVSS7.6AI score0.01093EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2022/09/01 8:4 p.m.27 views

CVE-2022-36622

Samsung Electronics mTower v0.3.0 and earlier was discovered to contain a NULL pointer dereference via the function TEEGetObjectInfo1...

7.7AI score0.01127EPSS
Exploits0References4
CVE
CVE
added 2022/09/01 8:4 p.m.76 views

CVE-2022-36622

CVE-2022-36622 affects Samsung Electronics mTower, v0.3.0 and earlier. A NULL pointer dereference occurs in TEE_GetObjectInfo1, enabling a high-severity impact (CVSS 7.5, NETWORK/LOW/NOAUTH/NO-UI) focused on availability risk. Public exploit details are not provided in the supplied documents. Con...

7.5CVSS7.5AI score0.01127EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2022/09/01 8:4 p.m.67 views

CVE-2022-36621

CVE-2022-36621 affects Samsung Electronics mTower v0.3.0 and earlier, due to a NULL pointer dereference in TEE_AllocateTransientObject. The CVE entry notes a high impact on availability (CVSS 3.1 base 7.5, network attack vector, no privileges required, no user interaction). Connected documents co...

7.5CVSS7.5AI score0.01093EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2022/09/01 8:4 p.m.27 views

CVE-2022-36621

Samsung Electronics mTower v0.3.0 and earlier was discovered to contain a NULL pointer dereference via the function TEEAllocateTransientObject...

7.7AI score0.01093EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/09/01 12:0 a.m.5 views

SAMSUNG mTower 代码问题漏洞

SAMSUNG mTower is a new Trusted Execution Environment TEE from Samsung South Korea. A security vulnerability exists in SAMSUNG mTower version v0.3.0 and prior versions, which originates from the discovery of a NULL pointer dereference via the function TEEAllocateTransientObject...

7.5CVSS7.3AI score0.01093EPSS
Exploits0References3
Rows per page
Query Builder