A critical security flaw has been uncovered in UNISOC's smartphone chipset that could be potentially weaponized to disrupt a smartphone's radio communications through a malformed packet. UNISOC is the world's fourth-largest mobile processor manufacturer based in Shanghai.
The vulnerability was discovered following a reverse-engineering of UNISOC's LTE protocol stack implementation, relating to a case of buffer overflow vulnerability in the component that handles Non-Access Stratum messages in the modem firmware, resulting in denial-of-service.
Israeli cybersecurity company Check Point said in a report, “Left unpatched, a hacker or a military unit can leverage such a vulnerability to neutralize communications in a specific location. The vulnerability is in the modem firmware, not in the Android OS itself.”
Check Point's Slava Makkaveev said, “An attacker could have used a radio station to send a malformed packet that would reset the modem, depriving the user of the possibility of communication.”
It is recommended that users update their Android devices to the latest available software as and when it becomes available as part of Google's Android Security Bulletin for June 2022.
See What’s Next in Tech With the Fast Forward Newsletter
Tweets From @varindiamag
Nothing to see here - yet
When they Tweet, their Tweets will show up here.
