Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A Buffer Access with Incorrect Length Value vulnerablity in the TEE_MACUpdate function in Samsung mTower through 0.3.0 allows a trusted application to trigger a Denial of Service (DoS) by invoking the function TEE_MACUpdate with an excessive size value of chunkSize.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SAMSUNG mTower 缓冲区错误漏洞
Vulnerability Description
SAMSUNG mTower是韩国三星(SAMSUNG)公司的一种新的可信执行环境 (TEE)。 SAMSUNG mTower 0.3.0之前的版本存在安全漏洞,该漏洞源于其TEE_MACUpdate函数中具有错误长度值易受攻击的缓冲区访问允许受信任的应用程序通过调用具有过大大小值“chunkSize”的函数TEE_MACUpdate来触发拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A