Many smartphones have pre-installed apps. These are a convenience that manufacturers offer for users. Samsung, like other phone manufacturers, has pre-installed applications on its smart devices. While some of the applications are automatic during installation, you can select others manually. However, according to a published analysis, these applications contain major security vulnerabilities.
Hackers Can Steal Your Data with Samsung’s Pre-installed Apps
Multiple critical vulnerabilities have emerged in Samsung’s pre-installed Android apps that, if used successfully, could allow hackers to access personal data without users’ consent and take control of devices. Oversecured founder Sergey Toshin said in an analysis published Thursday, “This emerging vulnerability allows a user’s contacts, calls, SMS/MMS to be accessed and edited.
The vulnerability could install arbitrary apps with device administrator rights, or modify the device’s user information on behalf of a system user, allowing it to read and write arbitrary files. Toshin reported these existing vulnerabilities to Samsung in February 2021, after which patches were released by the company as part of monthly security updates for April and May.
List of 7 vulnerabilities:
- CVE-2021-25356 – bypass third-party authentication
- CVE-2021-25388 – On-demand app install on Knox Core
- CVE-2021-25390 – Ability to have intent orientation in PhotoTable
- CVE-2021-25391 – Intent redirect in Secure Folder
- CVE-2021-25392 – Full access to DeX’s manifest policy file
- CVE-2021-25393 – Read/write access to arbitrary files as system user
- CVE-2021-25397 – Ability to write files on demand in TelephonyUI
These vulnerabilities allow attackers to exploit features such as installing third-party apps, deleting other installed apps on the device, or granting administrative privileges to steal sensitive files, read/write arbitrary files as a system user.
Samsung device owners are advised to update frequently to avoid potential security risks.