Google List Devices Affected By Vulnerabilities Samsung Exynos Chipset

0
Google List Devices Affected By Vulnerabilities Samsung Exynos Chipset

According to Google security teams, 18 vulnerabilities have been found in Samsung Exynos chips used in some leading Android smartphones and wearables. The security team disclosed that these vulnerabilities will put devices at risk of a security breach.

According to Google’s Project Zero Head, Tim Wills, there are four most dangerous vulnerabilities, which include ‘allow for internet-to-baseband remote code execution’. According to the tests run by the Google security teams, they confirmed the four vulnerabilities would allow an attacker to remotely hack a phone at a baseband level without user interaction, requiring only the victim’s phone number to do it. Google security researcher also gave comments on the vulnerabilities found on Samsung devices, saying “We believe that skilled attackers would be able to quickly create an operational exploit to compromise affected devices silently and remotely.”

Willis said, “Until security updates are available, users who wish to protect themselves from the baseband remote code execution vulnerabilities in Samsung’s Exynos chipsets can turn off Wi-Fi calling and Voice-over-LTE (VoLTE) in their device settings,”. He also added that if users turn off these settings, then the vulnerability can not be exploited by hackers.

The list of affected mobile devices are from the following brands of smartphones Samsung, Vivo, and Google(Pixel 6 and Pixel 7 series), while the list of wearables affected includes wearable fitted with Exynos W920 chipset and vehicles with Exynos Auto T5123 chipset among the list of affected devices.

Although Google Pixel devices will receive a security patch that will fix it other brands will have to wait for their manufacturers.

Google commented saying “As always, we encourage end users to update their devices as soon as possible, to ensure that they are running the latest builds that fix both disclosed and undisclosed security vulnerabilities,”

Based on the list of affected chipsets provided by Samsung, the list of affected devices includes but is likely not limited to:

Mobile devices from Samsung, including those in the S22, M33, M13, M12, A71, A53, A33, A21, A13, A12 and A04 series;
Mobile devices from Vivo, including those in the S16, S15, S6, X70, X60 and X30 series;
The Pixel 6 and Pixel 7 series of devices from Google;
Any wearables that use the Exynos W920 chipset; and
Any vehicles that use the Exynos Auto T5123 chipse