Last August, Samsung patched an arbitrary file upload vulnerability that could lead to remote code execution [1]. The announcement was very sparse and did not even include affected systems:
This article has been indexed from SANS Internet Storm Center, InfoCON: green