Google recently released an update for security issues and vulnerability issues for Android devices. However, there is a report that shows that more than 400 fragile code snippets were found on Qualcomm's DSP chipset, which, if left unattended, would make the smartphone vulnerable to hacks and fear that the hackers will install malware.
The Check Point security agency is conducting a study which they named "Achilles". In their research, they are reportedly conducting an in-depth security review of the DSP (Digital Signal Processor) chip on Qualcomm Technologies' AP (Applications Processor), and discovered that there is a hidden gap in the Hexagon DSP of the Qualcomm Snapdragon SoC.
a little explanation about DSP, DSP stands for Digital Signal Processor. It is one of the important components which functions to execute commands in real-time between the user and the firmware. Examples are image processing, audio and sound, neural network calculations, camera streaming, GPS positioning and so on.
The gaps that have been found are named with the code CVE-2020-11201, CVE-2020-11202, CVE-2020-11206, CVE-2020-11207, CVE-2020-11208, and CVE-2020-11209. Basically the gap appears to be vulnerable to DoS (Denial of Service) or privilege escalation attacks.
This is a network attack that is used to gain unauthorized access to systems within the security perimeter. After successful entry, the attacker can take control of the target device and can make the target device as a spying tool.
They can also make the targeted device useless, or install malware that functions to hide the activities they do and the malware is non-removable.
We all know that the chip from Qualcomm Snapdragon can say about 40% of its power for the flagship smartphones that are currently circulating. With Android becoming more and more vulnerable, it will be a nightmare for companies to tackle further exploitation cases.
No comments