Centre Issues a High-Risk warning to Samsung Phone Owners

By Consultants Review Team Friday, 15 December 2023

This week, the Centre issued further security cautions to Samsung Galaxy phone customers. The Indian Computer Emergency Response Team (CERT-In) issued a security advisory on December 13 bringing attention to several vulnerabilities affecting several Samsung Galaxy phones.

CERT-The vulnerabilities were rated as high-risk, and Samsung owners were urged to upgrade their phones' operating systems immediately. According to the research, Samsung Mobile Android versions 11, 12, 13, and 14 are vulnerable to such attacks. "Multiple vulnerabilities have been reported in Samsung products that could allow an attacker to bypass implemented security restrictions, access sensitive information, and execute arbitrary code on the targeted system," it stated.

Risks connected with Samsung phone vulnerabilities

These security vulnerabilities, according to the security note, "may allow an attacker to trigger a heap overflow and stack-based buffer overflow, access device SIM PIN, send a broadcast with elevated privilege, read sandbox data of AR Emoji, bypass Knox Guard lock via changing system time, access arbitrary files, gain access to sensitive information, execute arbitrary code and compromise the targeted system,"

Failure to update the operating system (OS) of Samsung Galaxy phones may expose them to significant risks. This allows hackers to bypass device security and obtain unauthorized access to sensitive data. Hackers can look through user data and steal sensitive information.

Samsung's reaction to CERT-As a precaution

The smartphone manufacturer has acknowledged the security weaknesses and announced that a maintenance release will be released as part of the next December 2023 upgrade. "As part of the monthly Security Maintenance Release (SMR) process, Samsung Mobile is releasing a maintenance release for major flagship models." "This SMR package contains patches from Google and Samsung," according to the Samsung security notice.


Current Issue