CVE-2018-16269
published 2020-01-22CVE-2018-16269: The wnoti system service in Samsung Galaxy Gear series allows an unprivileged process to take over the internal notification message data, due to improper…
high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
The wnoti system service in Samsung Galaxy Gear series allows an unprivileged process to take over the internal notification message data, due to improper D-Bus security policy configurations. This affects Tizen-based firmwares including Samsung Galaxy Gear series before build RE2.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| samsung | galaxy_gear_firmware | < re2 | re2 |
| samsung | gear_2_firmware | < re2 | re2 |
| samsung | gear_fit_2_firmware | < re2 | re2 |
| samsung | gear_fit_2_pro_firmware | < re2 | re2 |
| samsung | gear_fit_firmware | < re2 | re2 |
| samsung | gear_live_firmware | < re2 | re2 |
| samsung | gear_s2_firmware | < re2 | re2 |
| samsung | gear_s3_firmware | < re2 | re2 |
| samsung | gear_s_firmware | < re2 | re2 |
| samsung | gear_sport_firmware | < re2 | re2 |