VYPR
High severity7.8NVD Advisory· Published Aug 4, 2022· Updated Jun 17, 2026

CVE-2022-35858

CVE-2022-35858

Description

The TEE_PopulateTransientObject and __utee_from_attr functions in Samsung mTower 0.3.0 allow a trusted application to trigger a memory overwrite, denial of service, and information disclosure by invoking the function TEE_PopulateTransientObject with a large number in the parameter attrCount.

Affected products

1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.