• Home
  • Politics
  • News
  • Business
  • Health
  • Entertainment
  • Sports
  • Lifestyle
  • Education
  • Opinion
Wednesday, 21 May, 2025
  • Login
Top Radio 103.1 FM
 
  • Home
  • News
  • Politics
  • Business
  • Entertainment
  • Health
  • Lifestyle
  • Sports
  • Education
  • Technology
  • Foreign
No Result
View All Result
Top Radio 103.1 FM
No Result
View All Result
Home Technology

Microsoft Details Severe Vulnerabilities in Pre-Installed Android Apps

TOPFM NEWS by TOPFM NEWS
May 30, 2022
in Technology
A A
0
Microsoft Details Severe Vulnerabilities in Pre-Installed Android Apps
0
SHARES
63
VIEWS
Share on FacebookShare on Twitter

Microsoft has publicly disclosed a series of vulnerabilities in a mobile framework used in Android apps “with millions of downloads” that could have exposed their users to attacks.

The company says it “uncovered high-severity vulnerabilities in a mobile framework owned by mce Systems and used by multiple large mobile service providers in pre-installed Android System apps that potentially exposed users to remote (albeit complex) or local attacks.”

The vulnerabilities have been identified as CVE-2021-42598, CVE-2021-42599, CVE-2021-42600, and CVE-2021-42601; Microsoft says the flaws have received Common Vulnerability Scoring System (CVSS) scores between 7.0-8.9 out of 10.

The company says that mce Systems’ mobile framework includes a service that an attacker “could remotely invoke to exploit several vulnerabilities that could allow adversaries to implant a persistent backdoor or take substantial control over the device.”

Microsoft says it discovered the security flaws in September 2021. It then informed mce Systems and “the affected mobile service providers” of the vulnerabilities and collaborated with those companies to mitigate the problems so the relevant apps couldn’t be exploited by hackers.

“We worked closely with mce Systems’ security and engineering teams to mitigate these vulnerabilities,” Microsoft says, “which included mce Systems sending an urgent framework update to the impacted providers and releasing fixes for the issues. At the time of publication, there have been no reported signs of these vulnerabilities being exploited in the wild.”

The company also informed Google of these security flaws. Google reportedly responded by updating Google Play Protect, which Google says Android users can use to “help keep your apps safe and your data private,” to detect vulnerabilities of this nature.

But the full extent of these vulnerabilities isn’t known. Microsoft says that “there could be additional providers still undiscovered that may be impacted” by these flaws, and notes that “several mobile phone repair shops” may have installed a vulnerable app on customers’ devices. Android users have been advised to look for that app and remove it from their phones.

More information about the vulnerabilities—including the part of mce Systems’ mobile framework affected, how they could have been exploited, and more—is available via Microsoft’s report.

Related Posts

Toyota global production down for 10th month despite rising sales

Toyota global production down for 10th month despite rising sales

December 26, 2024 - Updated on December 28, 2024
43
Ghana leads four other African countries to sign SATA declaration on data and digital identity interoperability

Ghana leads four other African countries to sign SATA declaration on data and digital identity interoperability

April 27, 2023
7
Source: Nathaniel Mott
Via: PCMAG
Tags: Microsoft Details Severe Vulnerabilities in Pre-Installed Android Apps
Previous Post

Putin warns French, German leaders over arms supplies to Ukraine

Next Post

iPhone 14 Pro and Pro Max could finally get always-on display

Related Posts

Toyota global production down for 10th month despite rising sales
News

Toyota global production down for 10th month despite rising sales

December 26, 2024 - Updated on December 28, 2024
43
Ghana leads four other African countries to sign SATA declaration on data and digital identity interoperability
Technology

Ghana leads four other African countries to sign SATA declaration on data and digital identity interoperability

April 27, 2023
7
TikTok launches an elections hub in Kenya ahead of General Elections
Technology

TikTok launches an elections hub in Kenya ahead of General Elections

July 15, 2022
15
Facebook to allow up to five profiles tied to one account
Technology

Facebook to allow up to five profiles tied to one account

July 15, 2022
15
Microsoft releases tweet-size exploit for macOS sandbox escape bug
Technology

Microsoft releases tweet-size exploit for macOS sandbox escape bug

July 14, 2022
14
Final Android 13 beta arrives ahead of its official launch ‘in the weeks ahead’
Technology

Final Android 13 beta arrives ahead of its official launch ‘in the weeks ahead’

July 14, 2022
9
Next Post
iPhone 14 Pro and Pro Max could finally get always-on display

iPhone 14 Pro and Pro Max could finally get always-on display

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

BROWSE BY CATEGORIES

  • Business
  • Education
  • Entertainment
  • Foreign
  • Health
  • Lifestyle
  • News
  • Opinion
  • Politics
  • Sports
  • Technology
  • Uncategorized

BROWSE BY TOPICS

2022 Budget AFCON Afghanistan akufo addo Amazon Apiate explosion apple AT&T Ato Forson Black Stars covid COVID-19 COVID 19 E-Levy facebook GFA Ghana Police Service Google Government GRA health Intel iphone LGBTQ Mahama Majority Microsoft Minority momo NDC NPP Nvidia OMICRON Parliament police Russia security Taliban tech Tesla US UTAG vaccine vaccines Xinjiang

Recent Posts

  • Ex US President Jimmy Carter Passes On
  • VIP Bus – Four Confirmed Dead
  • BoxingDay on the streets of Accra by Top Media Group
  • Toyota global production down for 10th month despite rising sales
  • Akufo-Addo leads team to present brand-new car to GHS outstanding health officer for 2024

Recent Comments

No comments to show.

RECENT NEWS

  • Ex US President Jimmy Carter Passes On December 30, 2024
  • VIP Bus – Four Confirmed Dead December 28, 2024
  • BoxingDay on the streets of Accra by Top Media Group December 28, 2024
  • Toyota global production down for 10th month despite rising sales December 26, 2024

MAIN CATEGORIES

  • Business
  • Education
  • Entertainment
  • Foreign
  • Health
  • Lifestyle
  • News
  • Opinion
  • Politics
  • Sports
  • Technology
  • Uncategorized

Entertainment

Government approves GH¢4m to clear Korle-Bu renal unit’s debt
Health

Government approves GH¢4m to clear Korle-Bu renal unit’s debt

2 years ago
19
  • ABOUT US
  • CONTACT
  • ADVERTISE

© 2025 Top Media Group - Powered by BackUP Data Systems

No Result
View All Result
  • Home
  • Politics
  • News
  • Business
  • Health
  • Entertainment
  • Sports
  • Lifestyle
  • Education
  • Opinion

© 2025 Top Media Group - Powered by BackUP Data Systems

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In