CVE-2017-3218

Summary

Samsung Magician 5.0 fails to validate TLS certificates for HTTPS software update traffic. Prior to version 5.0, Samsung Magician uses HTTP for software updates.

Affected Software

VendorProductVersion RangeStatus
SamsungMagician<5.1affected

Weaknesses

  • CWE-295: CWE-295
  • CWE-311: CWE-311

ADP Enrichment

CVE Program Container

Additional References

References