In particular, the researchers found a vulnerability in the Unisoc CPU due to which telephone communications could be exposed to remote hacker attacks.
And to get an idea of how potentially the problem is potentially relevant, just think that Unisoc is the fourth manufacturer globally of smartphone processors, especially low -end ones intended for Asia and Africa (in the fourth quarter of 2021 he conquered a market share equal to 11%).
Until now this vulnerability has not come to light as the Unisoc processors, being obscured by those of the most successful (such as Qualcomm and Mediatek), have not received the necessary attention.
Well, according to what has been discovered by the Check Point Research team, the Unisoc processors are exposed to a vulnerability that could be exploited by the attacker on duty to block communications.
Through the NAS protocol, one of the many components of LTE technology, a hacker could send an EMM package with the potential to crash the Unisoc modem, generating a Denial of Service (DOS) or a Remote Code Execution (RCE).
The smartphone used by the Check Point Research team to test this vulnerability was a Motorola Moto G20 with the security patches updated in January 2022: the device, animated by a Unisoc T700 processor, allowed researchers to bring an attack to a successful end Dos.
To say about the researchers, this vulnerability could be exploited by a hacker (or military entity) to "neutralize communications in a specific place".
Unisoc has been informed of this problem in May and has been quickly correct and Google will publish the patch in the next Bulletin on Android safety.
You can find all the details on the tests carried out by Check Point Research on the dedicated page.