CVE-2022-22271

Summary

A missing input validation before memory copy in TIMA trustlet prior to SMR Jan-2022 Release 1 allows attackers to copy data from arbitrary memory.

Affected Software

VendorProductVersion RangeStatus
Samsung MobileSamsung Mobile DevicesP(9.0), Q(10.0), R(11.0) < SMR Jan-2022 Release 1affected

Weaknesses

  • CWE-125: CWE-125: Out-of-bounds Read

ADP Enrichment

CVE Program Container

Additional References

References