In summer 2018, Dongsung Kim has demonstrated Tizen vulnerability exploits which enables Samsung Gear apps to control paired smartphone without permissions. Our members have reported these security issues to Samsung Electronics, and had a presentation at DEF CON 26.
Finally, the response has come! In regards to this remote execution attack created 11 new Common Vulnerabilities and Exposures (CVE) IDs.
The following CVE entries are reserved for Dongsung’s research but not published yet. We will bring updates here when these CVEs become public.