TECHNICAL_WITH_LOVE Telegram 570
tgoop.com » United States » 花卷说科技 » Telegram web » Post 570
花卷说科技
Forwarded from Abhishek mishra
Bug found in Android lets you unlock someone's device just a SIM card
Source

A recently disclosed vulnerability gives any attacker with physical access to your Android device the ability to unlock it.

All devices running Android 10 to Android 13 were affected with this bug whether they are running OneUI, MIUI or even Pixel's stock OS. Custom ROMs are also affected by it.

The attacker only needs a SIM card with the PIN and PUK code to run this exploit. PUK (Personal Unlocking Key) is an 8-digit code unique to your SIM card. It is used to unlock your mobile and reset your SIM PIN.

The vulnerability is tracked with CVE-2022-20465 with patches for this issue being now available for AOSP 10-13.

The security researcher reported this bug to Android’s Vulnerability Rewards Program in the middle of this year, but Google did not move on the issue until September after some in-person prompting. It resulted in a $70,000 reward and is listed in the November security patch under a “System” issue with “High” severity.
YouTube
Pixel 6 Full Lockscreen Bypass POC
Accompanying blog post: Accidental $70k Google Pixel Lock Screen Bypass
https://bugs.xdavidhu.me/google/2022/11/10/accidental-70k-google-pixel-lock-screen-bypass/

I found a vulnerability affecting seemingly all Google Pixel phones where if you gave me any…
www.tgoop.com/technical_with_love/570
1.5K views



tgoop.com/technical_with_love/570
Create:
Last Update:

Bug found in Android lets you unlock someone's device just a SIM card
Source

A recently disclosed vulnerability gives any attacker with physical access to your Android device the ability to unlock it.

All devices running Android 10 to Android 13 were affected with this bug whether they are running OneUI, MIUI or even Pixel's stock OS. Custom ROMs are also affected by it.

The attacker only needs a SIM card with the PIN and PUK code to run this exploit. PUK (Personal Unlocking Key) is an 8-digit code unique to your SIM card. It is used to unlock your mobile and reset your SIM PIN.

The vulnerability is tracked with CVE-2022-20465 with patches for this issue being now available for AOSP 10-13.

The security researcher reported this bug to Android’s Vulnerability Rewards Program in the middle of this year, but Google did not move on the issue until September after some in-person prompting. It resulted in a $70,000 reward and is listed in the November security patch under a “System” issue with “High” severity.

BY 花卷说科技




Share with your friend now:
tgoop.com/technical_with_love/570

View MORE
Open in Telegram


Telegram News

Date: |

Telegram channels enable users to broadcast messages to multiple users simultaneously. Like on social media, users need to subscribe to your channel to get access to your content published by one or more administrators. Some Telegram Channels content management tips The Channel name and bio must be no more than 255 characters long How to create a business channel on Telegram? (Tutorial) Polls
from us


Bug found in Android lets you unlock someone's device just a SIM card

 花卷说科技 TG
web: 570
花卷说科技.Telegram web
花卷说科技 Telegram TG Channel
Telegram Updated:
Telegram 花卷说科技
FROM American