PT-2023-22894 · Samsung+1 · Sshdcpapp Ta+1

Mahdi Braik

Published

2023-08-10

Updated

2023-08-16

CVE-2023-30695

CVSS v3.1

6.7

Medium

Vector

AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions SSHDCPAPP TA versions prior to "SAMSUNG ELECTONICS, CO, LTD. - System Hardware Update - 7/13/2023"

Description The issue is an Out-of-bounds Write vulnerability that allows a local attacker to execute arbitrary code. This vulnerability affects certain Samsung Galaxy book models, including Galaxy book Go, Galaxy book Go 5G, Galaxy book2 Go, and Galaxy book2 Pro 360, when using Windows Update.

Recommendations For SSHDCPAPP TA versions prior to "SAMSUNG ELECTONICS, CO, LTD. - System Hardware Update - 7/13/2023", apply the "SAMSUNG ELECTONICS, CO, LTD. - System Hardware Update - 7/13/2023" update from Windows Update to resolve the issue.

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

CVE-2023-30695

Affected Products

Sshdcpapp Ta

Windows Update

PT-2023-22894 · Samsung+1 · Sshdcpapp Ta+1

CVE-2023-30695

Weakness Enumeration

Related Identifiers

Affected Products

References · 3