CVE-2022-40281

An issue was discovered in Samsung TizenRT through 3.0_GBM (and 3.1_PRE). cyassl_connect_step2 in curl/vtls/cyassl.c has a missing X509_free after SSL_get_peer_certificate, leading to information disclosure.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:o:samsung:tizenrt:3.0:gbm:*:*:*:*:*:*
cpe:2.3:o:samsung:tizenrt:2.0:-:*:*:*:*:*:*
cpe:2.3:o:samsung:tizenrt:1.1:-:*:*:*:*:*:*
cpe:2.3:o:samsung:tizenrt:1.0:m1:*:*:*:*:*:*

Information

Published : 2022-09-08 15:15

Updated : 2022-09-13 11:52


NVD link : CVE-2022-40281

Mitre link : CVE-2022-40281


JSON object : View

CWE
CWE-401

Missing Release of Memory after Effective Lifetime

Advertisement

dedicated server usa

Products Affected

samsung

  • tizenrt