Indian govt issues high risk warning against Samsung phone users
By MYBRANDBOOK
The Computer Emergency Response Team of India (CERT-In), has issued a high-risk warning for Samsung mobile phone users regarding multiple vulnerabilities. The warning highlights critical security issues affecting Samsung Mobile Android versions 11, 12, 13, and 14. These vulnerabilities are rated HIGH due to their potential impact and ease of exploitation.
CERT-In researchers have reportedly identified multiple vulnerabilities in Samsung products that pose significant threats, and can potentially allow attackers to bypass security restrictions, access sensitive information, and execute arbitrary code on targeted systems. These vulnerabilities are diverse and impact various components of the Samsung ecosystem, as detailed in the CERT-In advisory.
According to CERT-In, the identified vulnerabilities in Samsung products stem from issues like -
● Improper access control in Knox features.
● Integer overflow flaw in facial recognition software.
● Authorisation issues with the AR Emoji app.
● Incorrect handling of errors in Knox security software.
● Multiple memory corruption vulnerabilities in various system components.
● Incorrect data size verification in the softsimd library.
● Unvalidated user input in the Smart Clip app.
● Hijacking of certain app interactions in contacts.
The effective exploitation of these vulnerabilities could result in serious repercussions. This may include scenarios where an attacker could initiate a heap overflow and stack-based buffer overflow, gain access to the device SIM PIN, send broadcasts with elevated privilege, read sandbox data of AR Emoji, bypass Knox Guard lock by altering system time, access arbitrary files, obtain sensitive information, execute arbitrary code, and compromise the targeted system, as indicated in the security note.
SAP launches cloud services to help Indian scaleups innovate m
SAP at SAP unveils now "GROW with SAP for Scaleups," a new cloud service d...
Denodo and Sonata form alliance to unlock data-to-value creati
Denodo and Sonata Information Technology India Limited (SITL) have annou...
Google Play Store will now let users download two apps simulta
Google Play Store now lets users download two apps simultaneously. While a...
Google Pay has added "Open Wallet" shortcut
With the introduction of the "Open Wallet" shortcut, Google Pay has impro...
NUMERIC INDIA, A Group Brand Legrand
TAC SECURITY SOLUTIONS
TATA CONSULTANCY SERVICES
JUVAS SOLUTIONS PVT. LTD.
Technology Icons Of India 2023: Sunil Gupta
Sunil Gupta is the Co-founder, Managing Partner & CEO of Yotta Infrast...
Technology Icons Of India 2023: B.V.R. Subrahmanyam
B.V.R. Subrahmanyam belongs to Andhra Pradesh. He is a 1987-batch IAS ...
Technology Icons Of India 2023: Rajendra Singh Pawar
Rajendra Singh Pawar is an entrepreneur and businessperson who founded...
New defence PSUs will help India become self-reliant
MIL, India’s biggest manufacturer and market leader is engaged in Pr...
Leading company into fertilizers in the country
NFL is a dynamic organization committed to serve the farming community...
STPI encouraging software exports from India
Software Technology Parks of India (STPI) is an S&T organization under...
IRIS GLOBAL SERVICES PVT. LTD.
Iris Global services is one of the leading distribution houses that d...
FORTUNE MARKETING PVT. LTD.
Delhi based Fortune Marketing, An ISO 9001:2008 company, distributes ...
ADITYA INFOTECH LTD.
Aditya Infotech Ltd. (AIL) – the technology arm of Aditya Group, is ...