CVE-2018-16268

Name of the Vulnerable Software and Affected Versions: Tizen versions prior to 5.0 M1 Tizen-based firmwares including Samsung Galaxy Gear series before build RE2

Description: The issue is related to improper D-Bus security policy configurations in the SoundServer/FocusServer system services, allowing an unprivileged process to perform certain media-related system actions. This includes playing arbitrary sound files or DTMF tones.

Recommendations: For Tizen versions prior to 5.0 M1, update to version 5.0 M1 or later to resolve the issue. For Tizen-based firmwares including Samsung Galaxy Gear series before build RE2, update to build RE2 or later to resolve the issue.