Linux

Tizen

12 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2021-25433

  • EPSS 0.04%
  • Published 08.07.2021 14:15:08
  • Last modified 21.11.2024 05:54:58

Improper authorization vulnerability in Tizen factory reset policy prior to Firmware update JUL-2021 Release allows untrusted applications to perform factory reset using dbus signal.

9.8

CVE-2021-25434

  • EPSS 1.1%
  • Published 08.07.2021 14:15:08
  • Last modified 21.11.2024 05:54:58

Improper input validation vulnerability in Tizen bootloader prior to Firmware update JUL-2021 Release allows arbitrary code execution using param partition in wireless firmware download mode.

9.8

CVE-2021-25435

  • EPSS 1.1%
  • Published 08.07.2021 14:15:08
  • Last modified 21.11.2024 05:54:58

Improper input validation vulnerability in Tizen bootloader prior to Firmware update JUL-2021 Release allows arbitrary code execution using recovery partition in wireless firmware download mode.

9.8

CVE-2021-25436

  • EPSS 1.1%
  • Published 08.07.2021 14:15:08
  • Last modified 21.11.2024 05:54:59

Improper input validation vulnerability in Tizen FOTA service prior to Firmware update JUL-2021 Release allows arbitrary code execution via Samsung Accessory Protocol.

10

CVE-2021-25437

  • EPSS 1.14%
  • Published 08.07.2021 14:15:08
  • Last modified 21.11.2024 05:54:59

Improper access control vulnerability in Tizen FOTA service prior to Firmware update JUL-2021 Release allows attackers to arbitrary code execution by replacing FOTA update file.

8.8

CVE-2018-16262

  • EPSS 0.22%
  • Published 22.01.2020 13:15:10
  • Last modified 21.11.2024 03:52:24

The pkgmgr system service in Tizen allows an unprivileged process to perform package management actions, due to improper D-Bus security policy configurations. Such actions include installing, decrypting, and killing other packages. This affects Tizen...

8.8

CVE-2018-16263

  • EPSS 0.12%
  • Published 22.01.2020 13:15:10
  • Last modified 21.11.2024 03:52:24

The PulseAudio system service in Tizen allows an unprivileged process to control its A2DP MediaEndpoint, due to improper D-Bus security policy configurations. This affects Tizen before 5.0 M1, and Tizen-based firmwares including Samsung Galaxy Gear s...

6.5

CVE-2018-16264

  • EPSS 0.21%
  • Published 22.01.2020 13:15:10
  • Last modified 21.11.2024 03:52:24

The BlueZ system service in Tizen allows an unprivileged process to partially control Bluetooth or acquire sensitive information, due to improper D-Bus security policy configurations. This affects Tizen before 5.0 M1, and Tizen-based firmwares includ...

6.5

CVE-2018-16265

  • EPSS 0.18%
  • Published 22.01.2020 13:15:10
  • Last modified 21.11.2024 03:52:24

The bt/bt_core system service in Tizen allows an unprivileged process to create a system user interface and control the Bluetooth pairing process, due to improper D-Bus security policy configurations. This affects Tizen before 5.0 M1, and Tizen-based...

8.1

CVE-2018-16266

  • EPSS 0.19%
  • Published 22.01.2020 13:15:10
  • Last modified 21.11.2024 03:52:24

The Enlightenment system service in Tizen allows an unprivileged process to fully control or capture windows, due to improper D-Bus security policy configurations. This affects Tizen before 5.0 M1, and Tizen-based firmwares including Samsung Galaxy G...