Seven dangerous vulnerabilities have been disclosed in Samsung's pre-installed Android apps. Their exploitation allows threat actors to gain access to confidential data without users' consent and take control of the device.

The flaws could be used to install arbitrary third-party applications, get device administrator rights to uninstall other installed applications, steal confidential files, read or write arbitrary files on behalf of a system user.

As it was explained by the specialists from the Oversecured company, vulnerabilities in PhotoTable and Secure Folder could be used to hijack the apps' permissions to access the SD card and read contacts stored in the phone. Likewise, by exploiting CVE-2021-25397 and CVE-2021-25392, an attacker could overwrite the file storing SMS/MMS messages with malicious content and steal data from user notifications.

Experts reported their findings to Samsung in February 2021, and the company has released fixes for these issues.

Source: securitylab.ru