CVE-2022-40279 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	7.5 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
mitre	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 43%

Vendor	Product	Version
samsung	tizenrt	1.0:m1
samsung	tizenrt	1.1
samsung	tizenrt	2.0:gbm_m1
samsung	tizenrt	2.0:m2
samsung	tizenrt	3.0:gbm
samsung	tizenrt	3.1:pre

𝑥

= Vulnerable software versions

Known Exploits!

Common Weakness Enumeration

CWE-252 - Unchecked Return Value
The software does not check the return value from a method or function, which can prevent it from detecting unexpected states and conditions.

References

https://github.com/Samsung/TizenRT/blob/f8f776dd183246ad8890422c1ee5e8f33ab2aaaf/external/wpa_supplicant/src/l2_packet/l2_packet_pcap.c#L181

https://github.com/Samsung/TizenRT/issues/5629

https://linux.die.net/man/3/pcap_dispatch

https://github.com/Samsung/TizenRT/blob/f8f776dd183246ad8890422c1ee5e8f33ab2aaaf/external/wpa_supplicant/src/l2_packet/l2_packet_pcap.c#L181

https://github.com/Samsung/TizenRT/issues/5629

https://linux.die.net/man/3/pcap_dispatch