SamMobile has affiliate and sponsored partnerships. If you buy something through one of these links, we may earn a commission.

Notifications
    News For You

    Security flaw in Qualcomm modems affects millions of 5G Samsung devices

    Phone
    By 

    Last updated: May 12th, 2021 at 15:54 UTC+02:00

    A serious security flaw affecting Qualcomm's mobile station modems (MSM) was recently disclosed by security research team Check Point, who claims that the vulnerability could be exploited to inject malicious code into the phone by using the Android operating system itself as an entry point. The affected chip(s) are reportedly responsible for connecting nearly 40% of all smartphones in the world, including high-end phones from Samsung and other OEMs.

    The research team found that if a researcher wants to explore the latest 5G code in devices powered by Qualcomm's modems by implementing a debugger, the easiest way to do that is to exploit MSM data services through QMI' (Qualcomm MSM Interface). The investigation revealed a vulnerability in modem data service that can be used to control the modem and dynamically patch it from the application processor.'

    Numerous Samsung Galaxy devices remain vulnerable to this threat

    The good news is that although the security flaw was publicly disclosed earlier today, it has already been addressed and patched by Qualcomm in December 2020. The issue was kept under wraps for obvious security reasons.

    The not-so-good news is that numerous smartphones developed by Samsung (as well as other OEMs) are still vulnerable as of this writing. As always, if a part manufacturer such as Qualcomm releases a patch for its hardware, it's up to smartphone OEMs to distribute the update as they see fit. And because we live in the world of Android OS where fragmentation is par for the course, some devices will be updated sooner than others, with availability differing by region.

    Now, because Check Point has decided to make this issue public, this indicates that smartphone OEMs — including Samsung — should now be in the process of updating their devices to address the security flaw, however, it may take some time.

    The May 2021 security patch is now rolling out for numerous Galaxy devices, but it might not contain the necessary fixes for this issue. The security patch does include a fix for devices powered by both Exynos and Qualcomm chipsets — one that was reported in December — but it doesn't seem to match Check Point's description. Qualcomm has classified the vulnerability as ‘CVE-2020-11292,' and this classification was not mentioned in Samsung's latest security bulletin.

    Update: Samsung has since updated the May 2021 security bulletin and confirmed that the security flaw classified as “CVE-2020-11292” has been gradually patched since January.

    Original story continues:

    At the end of the day, what this means is that Samsung is, or should soon be in the process of releasing a new security patch that fixes Qualcomm's security flaw. However, we're not sure how many models are affected or if the May 2021 security patch addresses it in any capacity.

    Either way, mobile device users should make sure that they're always running the latest security updates. SamMobile readers can refer to our new online tool to check if their phone runs the latest security patch available in their region.

    Via FirmwareGeneralPhoneTablet 5GQualcomm
    Galaxy AI summarized

    Scroll for more related content
    News For You

    You might also like

    Snapdragon chip used in Galaxy S25 to launch in October

    Snapdragon chip used in Galaxy S25 to launch in October

    The Galaxy S25's processor, which is expected to be the Snapdragon 8 Gen 4, will likely be unveiled in October 2024. Qualcomm has revealed when it plans to host its annual Snapdragon Summit event, which will happen in Hawaii, as usual. Galaxy S25's processor is expected to be unveiled in October 2024 during Snapdragon Summit Qualcomm […]

    • By Asif Iqbal Shaik
    • 1 day ago
    Samsung boss meets Amazon, Meta, and Qualcomm CEOs to discuss future strategies

    Samsung boss meets Amazon, Meta, and Qualcomm CEOs to discuss future strategies

    We recently reported that Samsung boss Lee Jae-yong traveled to the US on a business trip. He planned to meet the company's important partners and discuss future strategies. After meeting Verizon CEO last week, Lee met the CEOs of tech giants Amazon, Meta, and Qualcomm this week and sought increased cooperation. Samsung boss Lee Jae-yong […]

    • By Asif Iqbal Shaik
    • 1 day ago
    Qualcomm interested in Samsung’s 2nm process for Snapdragon 8 Gen 5

    Qualcomm interested in Samsung’s 2nm process for Snapdragon 8 Gen 5

    Over the past few years, Qualcomm has shifted away from Samsung Foundry for the fabrication of its high-end Snapdragon chips. However, the company is keen on collaborating with Samsung Foundry again for future chips, such as the Snapdragon 8 Gen 5, which will likely be released in 2025. Qualcomm CEO keen on using Samsung Foundry […]

    • By Asif Iqbal Shaik
    • 1 week ago
    Galaxy Book 4 Edge goes official with Snapdragon X Elite chip, 120Hz OLED screen

    Galaxy Book 4 Edge goes official with Snapdragon X Elite chip, 120Hz OLED screen

    Samsung has finally unveiled the Galaxy Book 4 Edge, its first laptop with the Snapdragon X Elite chipset. It gets the Copilot+ PC badge from Microsoft, which means it has a powerful NPU (45 TOPS) for offline AI processing. This announcement comes moments after Microsoft's special event, where the company launched its own Surface laptop […]

    • By Asif Iqbal Shaik
    • 4 weeks ago
    Snapdragon 8 Gen 4 could force Galaxy S25 to be priced higher

    Snapdragon 8 Gen 4 could force Galaxy S25 to be priced higher

    The Galaxy S25 is expected to bring several upgrades and be launched early next year. One of the key upgrades of the upcoming flagship is the Snapdragon 8 Gen 4 chip, which has much faster performance, but that could negatively impact the phone. Galaxy S25 to get a price hike due to Snapdragon 8 Gen […]

    • By Asif Iqbal Shaik
    • 4 weeks ago
    Galaxy Book 4 Edge with Snapdragon X Elite chip leaks in full

    Galaxy Book 4 Edge with Snapdragon X Elite chip leaks in full

    The Galaxy Book 4 series was unveiled earlier this year, and there are four models in the lineup. However, Samsung is preparing to launch one more laptop in the series, the Galaxy Book 4 Edge. It is Samsung's first Galaxy Book laptop with the Snapdragon X Elite processor, and its images and specifications have leaked […]

    • By Asif Iqbal Shaik
    • 4 weeks ago