Insecure TLS Certificate Validation in Samsung Magician 5.0

CVE-2017-3218 · HIGH Severity

AV:A/AC:L/AU:N/C:C/I:C/A:C

Samsung Magician 5.0 fails to validate TLS certificates for HTTPS software update traffic. Prior to version 5.0, Samsung Magician uses HTTP for software updates.

Learn more about our Web Application Penetration Testing UK.