What the vulnerability does

01Description

Samsung Magician 5.0 fails to validate TLS certificates for HTTPS software update traffic. Prior to version 5.0, Samsung Magician uses HTTP for software updates.

Key dates

02Disclosure timeline

June 21, 2017 CVE published
August 5, 2024 Record updated