The issue is if it can be used as an attack vector. The article and the presentation that was translated indicates it is, but it seems to require root/firmware access to the device. Thats like saying your fridge is insecure as I can open it if i manage to break into your house.
The issue with links like this is that its been discussed in many places all over the internet, but the link was still posted without op doing due diligence. Maybe not done in bad faith, but it still spreads misinformation. Like I said; why post if you don’t understand or can verify? Clicks and points??
Ever heard of lateral movement? Just because they don’t use this exploit to kick in the front door doesn’t mean that they can’t use it to steal all your information or attack others once they’re in.
The issue is if it can be used as an attack vector. The article and the presentation that was translated indicates it is, but it seems to require root/firmware access to the device. Thats like saying your fridge is insecure as I can open it if i manage to break into your house.
The issue with links like this is that its been discussed in many places all over the internet, but the link was still posted without op doing due diligence. Maybe not done in bad faith, but it still spreads misinformation. Like I said; why post if you don’t understand or can verify? Clicks and points??
Ever heard of lateral movement? Just because they don’t use this exploit to kick in the front door doesn’t mean that they can’t use it to steal all your information or attack others once they’re in.
Yeah - but it’s not presented as: this could be harmful for your compromised devices. If it was I would have no objections