CVE-2018-16269: Infoleak
First published: Wed Jan 22 2020(Updated: )
The wnoti system service in Samsung Galaxy Gear series allows an unprivileged process to take over the internal notification message data, due to improper D-Bus security policy configurations. This affects Tizen-based firmwares including Samsung Galaxy Gear series before build RE2.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Samsung Galaxy Gear Firmware | <re2 | |
| Samsung Galaxy Gear | ||
| Samsung Gear 2 Firmware | <re2 | |
| Samsung Gear 2 | ||
| Samsung Gear Live Firmware | <re2 | |
| Samsung Gear Live | ||
| Samsung Gear S Firmware | <re2 | |
| Samsung Gear S | ||
| Samsung Gear S2 Firmware | <re2 | |
| Samsung Gear S2 | ||
| Samsung Gear S3 Firmware | <re2 | |
| Samsung Gear S3 | ||
| Samsung Gear Sport Firmware | <re2 | |
| Samsung Gear Sport | ||
| Samsung Gear Fit Firmware | <re2 | |
| Samsung Gear Fit | ||
| Samsung Gear Fit 2 Firmware | <re2 | |
| Samsung Gear Fit 2 | ||
| Samsung Gear Fit 2 Pro Firmware | <re2 | |
| Samsung Gear Fit 2 Pro |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Samsung Galaxy Gear vulnerability?
The vulnerability ID for this Samsung Galaxy Gear vulnerability is CVE-2018-16269.
What is the severity of CVE-2018-16269?
The severity of CVE-2018-16269 is high with a severity value of 7.5.
How does CVE-2018-16269 affect Samsung Galaxy Gear?
CVE-2018-16269 allows an unprivileged process to take over the internal notification message data on Samsung Galaxy Gear devices.
Which firmware versions are affected by CVE-2018-16269?
CVE-2018-16269 affects Tizen-based firmwares including Samsung Galaxy Gear series before build RE2.
How can I fix CVE-2018-16269 on my Samsung Galaxy Gear device?
To fix CVE-2018-16269 on your Samsung Galaxy Gear device, it is recommended to update to the latest firmware build RE2 or above.
- collector/nvd-index
- agent/description
- agent/event
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/type
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/samsung
- canonical/samsung galaxy gear firmware
- canonical/samsung galaxy gear
- canonical/samsung gear 2 firmware
- canonical/samsung gear 2
- canonical/samsung gear live firmware
- canonical/samsung gear live
- canonical/samsung gear s firmware
- canonical/samsung gear s
- canonical/samsung gear s2 firmware
- canonical/samsung gear s2
- canonical/samsung gear s3 firmware
- canonical/samsung gear s3
- canonical/samsung gear sport firmware
- canonical/samsung gear sport
- canonical/samsung gear fit firmware
- canonical/samsung gear fit
- canonical/samsung gear fit 2 firmware
- canonical/samsung gear fit 2
- canonical/samsung gear fit 2 pro firmware
- canonical/samsung gear fit 2 pro