Check Point researchers have announced four new vulnerabilities that affect over 900 million Android smartphones and tablets at DEF CON in Las Vegas.
What’s vulnerable?
The vulnerabilities are found in the software drivers Qualcomm ships with its chipsets. An attacker can exploit these vulnerabilities using a malicious app to trigger privilege escalations and gain root access to a device. This app would require no special permissions to take advantage of the vulnerabilities, which means they would not make users suspicious.Affected devices include:
- Samsung Galaxy S7 & S7 Edge
- Sony Xperia Z Ultra
- Google Nexus 5X, 6 & 6P
- HTC One M9 & HTC 10
- LG G4, G5 & V10
- Motorola Moto X
- OnePlus One, 2 & 3
- BlackBerry Priv
- Blackphone 1 & 2
Full Article
