- Samsung announced the discovery of a security threat
- It refers to older chipsets used in popular phone and watch models
- The bug has been fixed, but it is unclear when the patch will reach users
Samsung reported finding a security threat which allows you to increase the privileges of processes and thus access areas of the phone where the application should have nothing to do. It is interesting in that it affects only Exynos processors, specifically the Exynos 9820, 9825, 980, 990, 850 and W920. So these are relatively old phones, but also smart watches of the Galaxy Watch5 series. Although Samsung fixed the bug on October 7, 2024, the question is when the actual update will appear, if ever.
The bug received a CVSS severity rating of 8.1 out of 10 and Samsung it in its a very brief safety notice describes as a very serious error. While the report doesn’t mention attackers exploiting the vulnerability, Google officials say someone has already chained the flaw with other exploits as part of a real attack.
This bug demonstrates how important long support for security updates is. Updating the system as such pleases, but security patches they are when using the phone for critical purposes such as banking, really necessarily. And it is not enough if one comes every quarter, as even major manufacturers do with tablets or smart watches, for example.
Are you monitoring security threats?
Source: Samsung, The Register
Source: www.svetandroida.cz
