Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A Buffer Access with Incorrect Length Value vulnerablity in the TEE_MACComputeFinal function in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service (DoS) by invoking the function TEE_MACComputeFinal with an excessive size value of messageLen.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SAMSUNG mTower 缓冲区错误漏洞
Vulnerability Description
SAMSUNG mTower是韩国三星(SAMSUNG)公司的一种新的可信执行环境 (TEE)。 SAMSUNG mTower 0.3.0之前的版本存在安全漏洞,该漏洞源于其TEE_MACComputeFinal函数中具有错误长度值漏洞的缓冲区访问允许受信任的应用程序通过调用大小值为“messageLen”的函数TEE_MACComputeFinal来触发拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A