PT-2023-22902 · Samsung+1 · Galaxy Book2 Pro 360+5

Mahdi Braik

Published

2023-08-10

Updated

2023-08-15

CVE-2023-30702

CVSS v3.1

6.7

Medium

Vector

AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions SSHDCPAPP TA versions prior to "SAMSUNG ELECTONICS, CO, LTD. - System Hardware Update - 7/13/2023"

Description A stack overflow issue in SSHDCPAPP TA allows a local attacker to execute arbitrary code. This affects Windows Update for Galaxy book Go, Galaxy book Go 5G, Galaxy book2 Go, and Galaxy book2 Pro 360.

Recommendations For SSHDCPAPP TA versions prior to "SAMSUNG ELECTONICS, CO, LTD. - System Hardware Update - 7/13/2023", apply the "SAMSUNG ELECTONICS, CO, LTD. - System Hardware Update - 7/13/2023" update from Windows Update to resolve the issue.

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

CVE-2023-30702

Affected Products

Galaxy Book Go

Galaxy Book Go 5G

Galaxy Book2 Go

Galaxy Book2 Pro 360

Sshdcpapp Ta

Windows Update

PT-2023-22902 · Samsung+1 · Galaxy Book2 Pro 360+5

CVE-2023-30702

Weakness Enumeration

Related Identifiers

Affected Products

References · 3