3 Vulnerabilities in Kaspersky-backed TinyCheck

In our latest research, we found 3 different vulnerabilities in TinyCheck, an open-source tool developed and published by Félix Aimé, one of Kaspersky’s GReAT experts. Each one of the vulnerabilities has a high severity by itself. Once combined into a chain, a remote attacker could exploit it to get an RCE (remote code execution) on […]

Android Firmware Exploitation – Unsigned Firmware in Samsung’s SoC CVE-2020-10831

TL;DR   We will explain how we exploited Android firmware using an undocumented kernel API that was found by reverse-engineering Samsung’s “Hidden Factory Settings” app.This API permits flashing unsigned firmware of Samsung’s touchscreen firmware.The CVE affects all Samsung S7-S10 series using exynos chipset. Inspiration   After reading project zero’s great article about exploiting WiFi firmware to gain […]