Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A Buffer Access with Incorrect Length Value vulnerablity in the TEE_CipherUpdate function in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service (DoS) by invoking the function TEE_CipherUpdate with an excessive size value of srcLen.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SAMSUNG mTower 缓冲区错误漏洞
Vulnerability Description
SAMSUNG mTower是韩国三星(SAMSUNG)公司的一种新的可信执行环境 (TEE)。 SAMSUNG mTower 0.3.0之前的版本存在安全漏洞,该漏洞源于其TEE_CipherUpdate函数中存在“长度值不正确的缓冲区访问”漏洞允许受信任的应用程序通过调用大小值为“srcLen”的函数TEE_CipherUpdate来触发拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A