A local attacker may access and control the smart phone or read personal data from it.
Vulnerabilities Scoring System
The Vulnerabilities Scoring System (VSS) is for those who are interested in understanding the potential vulnerabilities of a product or service. A score is given to each of the security vulnerabilities found, and these scores range from 0-10. The following information is listed below:
- score - type - severity
1. Unauthorized access/control;
2. Sensitive data exposure;
3. Denial of service;
4. Privilege escalation;
5. Code injection;
6. Weak authentication;
7. Cross-site request forgery (CSRF);
8. Insufficient encryption; and,
9. Data corruption/loss/leaks.
Vulnerability summary:
A local attacker may access and control the smart phone or read personal data from it.
The vulnerability is not fixed by a recent update to the affected software and can be exploited by an unauthenticated, remote attacker.
Vulnerability Scenario
This is due to the fact that data transmitted between the smart phone and other devices, such as a PC or router, are not encrypted. This means an attacker could access them using a method such as social engineering.
If your smart phone isn't protected by strong encryption, it can be vulnerable to cyber attacks.
There are many ways to protect your phone from cyber attacks. You should make sure that you have installed a mobile security app on your device, and make sure the app is running in the background at all times. It's also important to keep your apps updated regularly with the latest software patches. There are many options when it comes to apps that will help secure your smart phone, including antivirus programs, spyware removal tools, and even anti-phishing software.
Timeline
Published on: 10/14/2022 16:15:00 UTC
Last modified on: 10/15/2022 01:54:00 UTC