Gear S3 Firmware Security Vulnerabilities and Issues — Gear S3 Firmware CVE List

Lucene search

SamsungGear S3 Firmware

5 matches found

CVE•added 2020/01/22 2:15 p.m.•50 views

CVE-2018-16272

The wpa_supplicant system service in Samsung Galaxy Gear series allows an unprivileged process to fully control the Wi-Fi interface, due to the lack of its D-Bus security policy configurations. This affects Tizen-based firmwares including Samsung Galaxy Gear series before build RE2.

9.8CVSS9.3AI score0.00364EPSS

CVE•added 2020/01/22 2:15 p.m.•43 views

CVE-2018-16271

The wemail_consumer_service (from the built-in application wemail) in Samsung Galaxy Gear series allows an unprivileged process to manipulate a user's mailbox, due to improper D-Bus security policy configurations. An arbitrary email can also be sent from the mailbox via the paired smartphone. This ...

6.5CVSS6.4AI score0.00187EPSS

CVE•added 2020/01/22 1:15 p.m.•35 views

CVE-2018-16269

The wnoti system service in Samsung Galaxy Gear series allows an unprivileged process to take over the internal notification message data, due to improper D-Bus security policy configurations. This affects Tizen-based firmwares including Samsung Galaxy Gear series before build RE2.

7.5CVSS7.5AI score0.00316EPSS

CVE•added 2021/06/11 3:15 p.m.•35 views

CVE-2021-25424

Improper authentication vulnerability in Tizen bluetooth-frwk prior to Firmware update JUN-2021 Release allows bluetooth attacker to take over the user's bluetooth device without user awareness.

8.8CVSS8.6AI score0.00111EPSS

CVE•added 2020/01/22 2:15 p.m.•34 views

CVE-2018-16270

Samsung Galaxy Gear series before build RE2 includes the hcidump utility with no privilege or permission restriction. This allows an unprivileged process to dump Bluetooth HCI packets to an arbitrary file path.

7.5CVSS7.5AI score0.00358EPSS