The situations in which Android smartphones are exposed and subject to security problems are not uncommon. If the problems are often in the operating system, in other cases it is the hardware itself that has serious flaws.
Qualcomm, given its presence in this universe, is in charge of a large percentage of equipment. It is these who are now exposed to a serious new security breach, where about 30 of the Android smartphones are vulnerable.
A new flaw in Android smartphones
The number of smartphones that are vulnerable is not known for certain, but the data points to thousands of Android devices. As a result of a failure identified now, many of these devices can be attacked through Qualcomm’s modems.
The fault – CVE-2020-11292 – appears to reside in the Qualcomm MSM Interface (QMI) protocol. This is responsible for the communication between the modem of the smartphone with the Android operating system, ensuring that these elements are able to function correctly together.
Problem is with Qualcomm modems
When exploiting the recognized flaw, it is simple to gain access to the history of messages exchanged, the call list and other elements associated with these smartphone services. Only at this point is the door open to access privileged information from users.
Furthermore, and what is revealed, it is also possible to obtain real-time information about what happens on the Android smartphone. We talk about listening to the calls that are being made and reading the SMS sent or received. Other functionalities can also be activated in the SIM.
Qualcomm has already released an update
To solve this problem, Qualcomm will have already sent an update for manufacturers to apply it on their smartphones. What is not known is whether this correction was effectively applied and who makes me and models is already present.
Qualcomm hardware failure situations in the universe of Android smartphones are not uncommon. At the end of last year a security problem was shown in the Adreno GPU and in 2019 another fault in the brand’s modem had already been presented. This new one has the same severity and the same probability of never being resolved.
Source: Pplware by pplware.sapo.pt.
*The article has been translated based on the content of Pplware by pplware.sapo.pt. If there is any problem regarding the content, copyright, please leave a report below the article. We will try to process as quickly as possible to protect the rights of the author. Thank you very much!
*We just want readers to access information more quickly and easily with other multilingual content, instead of information only available in a certain language.
*We always respect the copyright of the content of the author and always include the original link of the source article.If the author disagrees, just leave the report below the article, the article will be edited or deleted at the request of the author. Thanks very much! Best regards!