CVE-2022-36621 Information

Description

Samsung Electronics mTower v0.3.0 and earlier was discovered to contain a NULL pointer dereference via the function TEE_AllocateTransientObject.

Reference

https://github.com/Samsung/mTower/blob/18f4b592a8a973ce5972f4e2658ea0f6e3686284/tee/lib/libutee/tee_api_objects.c#L223 https://github.com/Samsung/mTower https://security.samsungmobile.com/securityUpdate.smsb