Samsung SmartTV

Evaluation Details

Device	Mobile Application
Vendor: Samsung	Target Platform: Android
Model: UN50MU6300	Package Name: com.samsung.smartviewad
Firmware Version: T-KTMAKUC-1156.0, BT-S; T-KTMINTV-1012	Package Version: 2.1.0.100
Evaluation Date: 03/20/2018	Evaluation Date: 04/04/2018

Device Score - 66.67% (D)

Property	Score	Why is this important?
Internet Pairing ^(?)	0/3	Explain
Configuration ^(?)	7/7	Explain
Upgradability ^(?)	1/4	Explain
Exposesed Services ^(?)	3/4	Explain
Vulnerabilities Low (CVSS) ^(?)	1/3	Explain
Vulnerabilities Medium (CVSS) ^(?)	2/4	Explain
Vulnerabilities High (CVSS) ^(?)	0/7	Explain
Vulnerabilities Critical (CVSS) ^(?)	0/10	Explain
Total	14/42	Total score for the device component, higher is worst

Mobile Score - 69.23% (D)

Property	Score	Why is this important?
Sensitive Data ^(?)	0/6	Explain
Programming Errors ^(?)	2/4	Explain
Excess Permissions ^(?)	2/3	Explain
Total	4/13	Total score for the device component, higher is worst

Cloud Score - 79.35% (C)

Property	Score	Why is this important?
First-party endpoints ^(?)	2/3	Explain
Third-party endpoints ^(?)	5/5	Explain
Hybrid endpoints ^(?)	2/4	Explain
Self-Signed Certificates ^(?)	0/10	Explain
Name Mismatch on Certificate ^(?)	0/10	Explain
Vulnerable TLS/SSL version ^(?)	10/10	Explain
Unsupported OS ^(?)	0/11	Explain
Information Disclosure ^(?)	0/12	Explain
Cleartext Authentication ^(?)	0/13	Explain
Exploitable Services ^(?)	0/14	Explain
Total	19/92	Total score for the device component, higher is worst

Network Score - 75.0% (C)

Property	Score	Why is this important?
Third-party DNS ^(?)	0/2	Explain
HTTP ^(?)	0/1	Explain
UPnP ^(?)	2/2	Explain
NTPv3 ^(?)	0/1	Explain
Custom Protocol ^(?)	0/2	Explain
MITM Device-to-Cloud ^(?)	0/4	Explain
MITM Mobile-to-Cloud ^(?)	0/4	Explain
MITM Mobile-to-Device ^(?)	2/2	Explain
Encryption Device-to-Cloud ^(?)	2/4	Explain
Encryption Mobile-to-Cloud ^(?)	0/4	Explain
Encryption Mobile-to-Device ^(?)	1/2	Explain
Total	7/28	Total score for the device component, higher is worst