Just In
- just now Here’s a List of Smartphones That Are Most Likely to Feature Qualcomm Snapdragon 8 Gen 4
- 1 hr ago Realme Narzo 70 & Narzo 70x Launching Today in India: Check Price, Specs, Live Stream Details
- 2 hrs ago Vivo T3x 5G Goes on Sale in India at 12 noon Today via Flipkart: Check Price, Specs, Offers
- 3 hrs ago Microsoft Launches Phi-3, its Smallest Open-Source AI Model Yet!
Don't Miss
- Sports IPL 2024: No Place For Sanju Samson in Irfan Pathan's 15-Member Indian T20 World Cup Squad
- Movies Arti & Dipak Sangeet: Bride-To-Be Turns Up Emotions As She Dedicates Song To Krushna Abhishek, Watch Video
- News ByteDance To Sell TikTok Or Face Ban In US: Senate Passes Bill
- Lifestyle Amitabh Bachchan's Youthful Avatar In Kalki 2898 AD Is Impressive, Check Actors Who Sported Digital De-Aging!
- Automobiles Kia Carens Earns Mixed Safety Ratings Amidst Growing Popularity In India
- Finance Okay Play India Posts 12.79% Revenue Growth In Q4 After 1:10 Stock Split Approval
- Education Karnataka SSLC Class 10 Result, Tentative Date, How and Where to Check KSEAB Result 2024
- Travel Fly in Luxury: 10 Ways to Get Free Flight Upgrades
Xiaomi Guard Provider likely to have security vulnerabilities
Xiaomi Guard Provider has received a patch to fix security vulnerabilities.
Xiaomi smartphones might have some security vulnerabilities, claims a recent report. Recently, there were claims about URL spoofing in preloaded browsers on Xiaomi smartphones. Now, fresh information is that the Xiaomi Guard Provider, a security app that is preloaded on the company's smartphones is said to have a grave vulnerability.
A recent report by Check Point Research has discovered the vulnerability that would have allowed malicious sources to create havoc by intercepting the traffic that is linked to the app. Going by the findings of the cybersecurity firm, the unencrypted traffic allows adding a malicious code that can be executed resulting in malware installation or data theft.
However, Xiaomi has patched this security vulnerability as soon as it was discovered. And, there are no reports regarding any flaw.
Xiaomi Guard Provider vulnerability
As per the cybersecurity firm, the Xiaomi Guard Provider app, which is preloaded in the company's smartphones was caused due to the use of multiple SDKs for third different anti-virus services - Avast, Tencent and AVL. The app used these to scan the devices for virus and all three use different SDKs. But the issue with the use of multiple SDKs is that a threat to one can compromise the rest as well. And, the private data one on SDK is accessible by the others.
When it comes to the Guard Provider app, a malicious party could carry on an attack by connecting to the same Wi-Fi network and entering into the unsecured traffic routed via the security app. It can also change the server configuration of the SDK. When this happens, the attacker can allow malicious APK to be executed by interrupting the security check process.
As of now, there is no clarity if the patch that Xiaomi has released will address the unsecured traffic routing flaw or if it has fixed the inherent issue associated with SDKs.
-
99,999
-
1,29,999
-
69,999
-
41,999
-
64,999
-
99,999
-
29,999
-
63,999
-
39,999
-
1,56,900
-
79,900
-
1,39,900
-
1,29,900
-
65,900
-
1,56,900
-
1,30,990
-
76,990
-
16,499
-
30,700
-
12,999
-
14,999
-
26,634
-
18,800
-
62,425
-
1,15,909
-
93,635
-
75,804
-
9,999
-
11,999
-
3,999