Indian govt issues high risk warning against Samsung phone users


By MYBRANDBOOK


Indian govt issues high risk warning against Samsung phone users

The Computer Emergency Response Team of India (CERT-In), has issued a high-risk warning for Samsung mobile phone users regarding multiple vulnerabilities. The warning highlights critical security issues affecting Samsung Mobile Android versions 11, 12, 13, and 14. These vulnerabilities are rated HIGH due to their potential impact and ease of exploitation.  

 

CERT-In researchers have reportedly identified multiple vulnerabilities in Samsung products that pose significant threats, and can potentially allow attackers to bypass security restrictions, access sensitive information, and execute arbitrary code on targeted systems. These vulnerabilities are diverse and impact various components of the Samsung ecosystem, as detailed in the CERT-In advisory. 

 

According to CERT-In, the identified vulnerabilities in Samsung products stem from issues like - 

● Improper access control in Knox features. 

● Integer overflow flaw in facial recognition software. 

● Authorisation issues with the AR Emoji app. 

● Incorrect handling of errors in Knox security software. 

● Multiple memory corruption vulnerabilities in various system components. 

● Incorrect data size verification in the softsimd library. 

● Unvalidated user input in the Smart Clip app. 

● Hijacking of certain app interactions in contacts. 

 

The effective exploitation of these vulnerabilities could result in serious repercussions. This may include scenarios where an attacker could initiate a heap overflow and stack-based buffer overflow, gain access to the device SIM PIN, send broadcasts with elevated privilege, read sandbox data of AR Emoji, bypass Knox Guard lock by altering system time, access arbitrary files, obtain sensitive information, execute arbitrary code, and compromise the targeted system, as indicated in the security note. 

 E-Magazine 
 VIDEOS  Placeholder image

Copyright www.mybrandbook.co.in @1999-2024 - All rights reserved.
Reproduction in whole or in part in any form or medium without express written permission of Kalinga Digital Media Pvt. Ltd. is prohibited.
Other Initiatives : www.varindia.com | www.spoindia.org