Soumya Prakash Pradhan

The CERT-In (Computer Emergency Response Team of India) has recently issued a high-risk warning for Samsung mobile phone users concerning multiple vulnerabilities.

This alert emphasised critical security issues impacting Samsung Mobile Android versions 11, 12, 13, and 14, which are considered high-risk due to their potential impact and ease of exploitation.

Researchers at CERT-In have identified various vulnerabilities in Samsung products that could pose significant threats.

These vulnerabilities may allow attackers to bypass security restrictions, access sensitive information, and execute arbitrary code on targeted systems.

The issues affect different parts of the Samsung ecosystem, as outlined in the CERT-In advisory.

CERT-In points out that the vulnerabilities in Samsung products are related to:

  1. Improper access control in Knox features.
  2. Integer overflow flaw in facial recognition software.
  3. Authorization issues with the AR Emoji app.
  4. Incorrect handling of errors in Knox security software.
  5. Multiple memory corruption vulnerabilities in various system components.
  6. Incorrect data size verification in the softsimd library.
  7. Unvalidated user input in the Smart Clip app.
  8. Hijacking of certain app interactions in contacts.

These vulnerabilities affect Samsung Mobile Android versions 11, 12, 13, and 14, putting a wide range of Samsung devices, including the Galaxy S23 series, Galaxy Flip 5, Galaxy Fold 5, and other Samsung devices at risk.

To mitigate the risks associated with these vulnerabilities, users are strongly advised to:

  1. Apply security updates promptly.
  2. Keep apps up to date.
  3. Be cautious about the apps you install.
  4. Exercise caution when clicking on links.