TizenRT <=3.0_GBM: X509_free missing in cyassl => info disclosure
CVE-2022-40281 Published on September 8, 2022

An issue was discovered in Samsung TizenRT through 3.0_GBM (and 3.1_PRE). cyassl_connect_step2 in curl/vtls/cyassl.c has a missing X509_free after SSL_get_peer_certificate, leading to information disclosure.

NVD

Products Associated with CVE-2022-40281

Want to know whenever a new CVE is published for Samsung Tizenrt? stack.watch will email you.

Samsung Tizenrt

Exploit Probability

EPSS

0.30%

Percentile

52.55%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

TizenRT <=3.0_GBM: X509_free missing in cyassl => info disclosureCVE-2022-40281 Published on September 8, 2022

Products Associated with CVE-2022-40281

Exploit Probability

TizenRT <=3.0_GBM: X509_free missing in cyassl => info disclosure
CVE-2022-40281 Published on September 8, 2022