Denial of Service Vulnerability in Samsung TizenRT Products
CVE-2022-40279

7.5HIGH

Key Information:

Vendor
Samsung
Status
Tizenrt
Vendor
CVE Published:
8 September 2022

Summary

A vulnerability has been identified in the Samsung TizenRT platform that could lead to denial of service. The issue arises from a missing check on the return value of the pcap_dispatch function within the wpa_supplicant implementation. This oversight can result in a malfunction of the system, rendering the affected products unresponsive. Users of TizenRT versions through 3.0_GBM and 3.1_PRE should be aware of this issue and monitor their systems for potential disruptions.

References

https://linux.die.net/man/3/pcap_dispatch
x_refsource_MISC
https://github.com/Samsung/TizenRT/issues/5629
x_refsource_MISC
https://github.com/Samsung/TizenRT/blob/f8f776dd183246ad8...
x_refsource_MISC

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.