<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"
	xmlns:content="http://purl.org/rss/1.0/modules/content/"
	xmlns:wfw="http://wellformedweb.org/CommentAPI/"
	xmlns:dc="http://purl.org/dc/elements/1.1/"
	xmlns:atom="http://www.w3.org/2005/Atom"
	xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
	xmlns:slash="http://purl.org/rss/1.0/modules/slash/"
	>

<channel>
	<title>vulnerablity Archives - Gizmochina</title>
	<atom:link href="https://www.gizmochina.com/tag/vulnerablity/feed/" rel="self" type="application/rss+xml" />
	<link>https://www.gizmochina.com/tag/vulnerablity/</link>
	<description>Latest Tech News, Product Reviews and Deals</description>
	<lastBuildDate>Mon, 20 Apr 2020 09:28:38 +0000</lastBuildDate>
	<language>en-US</language>
	<sy:updatePeriod>
	hourly	</sy:updatePeriod>
	<sy:updateFrequency>
	1	</sy:updateFrequency>
	<generator>https://wordpress.org/?v=5.9.9</generator>
	<item>
		<title>Xiaomi 65W GaN charger sale suspended due to potential vulnerability</title>
		<link>https://www.gizmochina.com/2020/04/20/xiaomi-65w-gan-charger-sale-suspended-due-to-potential-vulnerability/</link>
		
		<dc:creator><![CDATA[Sean]]></dc:creator>
		<pubDate>Mon, 20 Apr 2020 09:28:38 +0000</pubDate>
				<category><![CDATA[News]]></category>
		<category><![CDATA[Top Stories]]></category>
		<category><![CDATA[Xiaomi]]></category>
		<category><![CDATA[GaN charger]]></category>
		<category><![CDATA[vulnerablity]]></category>
		<category><![CDATA[Xiaomi GaN Type-C 65W Charger]]></category>
		<guid isPermaLink="false">https://www.gizmochina.com/?p=317871</guid>

					<description><![CDATA[<img width="300" height="222" src="https://www.gizmochina.com/wp-content/uploads/2020/03/Xiaomi-GaN-Type-C-65W-Charger-300x222.jpg?x44794" class="webfeedsFeaturedVisual wp-post-image" alt="Xiaomi GaN Type-C 65W Charger" loading="lazy" style="display: block; margin: auto; margin-bottom: 5px;max-width: 100%;" link_thumbnail="" srcset="https://www.gizmochina.com/wp-content/uploads/2020/03/Xiaomi-GaN-Type-C-65W-Charger-300x222.jpg 300w, https://www.gizmochina.com/wp-content/uploads/2020/03/Xiaomi-GaN-Type-C-65W-Charger-768x568.jpg 768w, https://www.gizmochina.com/wp-content/uploads/2020/03/Xiaomi-GaN-Type-C-65W-Charger-80x60.jpg 80w, https://www.gizmochina.com/wp-content/uploads/2020/03/Xiaomi-GaN-Type-C-65W-Charger-485x360.jpg 485w, https://www.gizmochina.com/wp-content/uploads/2020/03/Xiaomi-GaN-Type-C-65W-Charger-696x515.jpg 696w, https://www.gizmochina.com/wp-content/uploads/2020/03/Xiaomi-GaN-Type-C-65W-Charger-568x420.jpg 568w, https://www.gizmochina.com/wp-content/uploads/2020/03/Xiaomi-GaN-Type-C-65W-Charger.jpg 900w" sizes="(max-width: 300px) 100vw, 300px" /><p>When Xiaomi launched its current flagship Mi 10 series, the company also unveiled its new 65W fast charger that utilized gallium nitride technology (or GaN). However, recent reports have revealed that the new fast charger is not available on multiple platforms, and the reason for this could be a potential vulnerability. According to a new [&#8230;]</p>
<p>The post <a rel="nofollow" href="https://www.gizmochina.com/2020/04/20/xiaomi-65w-gan-charger-sale-suspended-due-to-potential-vulnerability/">Xiaomi 65W GaN charger sale suspended due to potential vulnerability</a> appeared first on <a rel="nofollow" href="https://www.gizmochina.com">Gizmochina</a>.</p>
]]></description>
										<content:encoded><![CDATA[<img width="300" height="222" src="https://www.gizmochina.com/wp-content/uploads/2020/03/Xiaomi-GaN-Type-C-65W-Charger-300x222.jpg?x44794" class="webfeedsFeaturedVisual wp-post-image" alt="Xiaomi GaN Type-C 65W Charger" loading="lazy" style="display: block; margin: auto; margin-bottom: 5px;max-width: 100%;" link_thumbnail="" srcset="https://www.gizmochina.com/wp-content/uploads/2020/03/Xiaomi-GaN-Type-C-65W-Charger-300x222.jpg 300w, https://www.gizmochina.com/wp-content/uploads/2020/03/Xiaomi-GaN-Type-C-65W-Charger-768x568.jpg 768w, https://www.gizmochina.com/wp-content/uploads/2020/03/Xiaomi-GaN-Type-C-65W-Charger-80x60.jpg 80w, https://www.gizmochina.com/wp-content/uploads/2020/03/Xiaomi-GaN-Type-C-65W-Charger-485x360.jpg 485w, https://www.gizmochina.com/wp-content/uploads/2020/03/Xiaomi-GaN-Type-C-65W-Charger-696x515.jpg 696w, https://www.gizmochina.com/wp-content/uploads/2020/03/Xiaomi-GaN-Type-C-65W-Charger-568x420.jpg 568w, https://www.gizmochina.com/wp-content/uploads/2020/03/Xiaomi-GaN-Type-C-65W-Charger.jpg 900w" sizes="(max-width: 300px) 100vw, 300px" /><p>When <a href="https://www.gizmochina.com/tag/xiaomi/" target="_blank" rel="noopener noreferrer">Xiaomi</a> launched its current flagship <a href="https://www.gizmochina.com/tag/mi-10/" target="_blank" rel="noopener noreferrer">Mi 10</a> series, the company also unveiled its new <a href="https://www.gizmochina.com/tag/xiaomi-gan-type-c-65w-charger/" target="_blank" rel="noopener noreferrer">65W fast charger</a> that utilized gallium nitride technology (or GaN). However, recent reports have revealed that the new fast charger is not available on multiple platforms, and the reason for this could be a potential vulnerability.</p>
<p><img loading="lazy" class="aligncenter wp-image-305360 size-full" src="https://www.gizmochina.com/wp-content/uploads/2020/02/Screenshot-2020-02-13-at-6.20.11-PM.png?x44794" alt="Xiaomi GaN 65W charger" width="497" height="516" srcset="https://www.gizmochina.com/wp-content/uploads/2020/02/Screenshot-2020-02-13-at-6.20.11-PM.png 497w, https://www.gizmochina.com/wp-content/uploads/2020/02/Screenshot-2020-02-13-at-6.20.11-PM-289x300.png 289w, https://www.gizmochina.com/wp-content/uploads/2020/02/Screenshot-2020-02-13-at-6.20.11-PM-405x420.png 405w" sizes="(max-width: 497px) 100vw, 497px" /></p>
<p>According to a new report, Xiaomi&#8217;s smartphone department received a risk reminder from a 3rd party security team. This team stated that the Xiaomi 65W fast charger is technically vulnerable at the moment. The product uses a rewritable eFlash / MTP chip to fix potential problems and updates the charging protocol. However, this entire firmware is unencrypted, meaning there is a possibility for hackers to modify it.</p>
<h6 class="related"><strong>Editor&#8217;s Pick: <a href="https://www.gizmochina.com/2020/04/18/flipkart-will-commence-sales-of-products-including-smartphones-from-april-20/">Flipkart will commence sales of products including smartphones from April 20</a></strong></h6>
<p>In other words, hackers can potentially cause a very high voltage output, which runs the risk of damage to the product or worse the customer. Thus, Xiaomi has officially removed its 65W GaN fast charger from different platforms where it is on sale, citing emergency reasons. It has also been taken away from shelves of offline physical stores as well.</p>
<p><img loading="lazy" class="size-full wp-image-308572 aligncenter" src="https://www.gizmochina.com/wp-content/uploads/2020/03/Xiaomi-GaN-Type-C-65W-Charger.jpg?x44794" alt="Xiaomi GaN Type-C 65W Charger" width="900" height="666" srcset="https://www.gizmochina.com/wp-content/uploads/2020/03/Xiaomi-GaN-Type-C-65W-Charger.jpg 900w, https://www.gizmochina.com/wp-content/uploads/2020/03/Xiaomi-GaN-Type-C-65W-Charger-300x222.jpg 300w, https://www.gizmochina.com/wp-content/uploads/2020/03/Xiaomi-GaN-Type-C-65W-Charger-768x568.jpg 768w, https://www.gizmochina.com/wp-content/uploads/2020/03/Xiaomi-GaN-Type-C-65W-Charger-80x60.jpg 80w, https://www.gizmochina.com/wp-content/uploads/2020/03/Xiaomi-GaN-Type-C-65W-Charger-485x360.jpg 485w, https://www.gizmochina.com/wp-content/uploads/2020/03/Xiaomi-GaN-Type-C-65W-Charger-696x515.jpg 696w, https://www.gizmochina.com/wp-content/uploads/2020/03/Xiaomi-GaN-Type-C-65W-Charger-568x420.jpg 568w" sizes="(max-width: 900px) 100vw, 900px" /></p>
<p>Notably, users need not worry about an explosion or their devices catching fire since the smartphone also features overvoltage protection. Current gen handsets have a protection state of intermittent charging or no charging. Thus, if the voltage crosses 20V, the built in OVP will kick in to protect the hardware inside the smartphone. Although, peripheral accessories like headphones may get damaged due to this. Xiaomi is expected to be working on fixing this issue currently, and it&#8217;s after sales service for users can be contacted for more information.</p>
<h6 class="related"><strong>UP NEXT: <a href="https://www.gizmochina.com/2020/04/20/oppo-find-x2-neo-5g-new-renders-appear-ahead-of-rumored-april-end-launch/">OPPO Find X2 Neo 5G new renders appear ahead of rumored April end launch</a></strong></h6>
<p>&nbsp;</p>
<p>(<a href="https://tech.sina.com.cn/roll/2020-04-20/doc-iircuyvh8723813.shtml" target="_blank" rel="noopener noreferrer">Via</a>)</p>
<p>The post <a rel="nofollow" href="https://www.gizmochina.com/2020/04/20/xiaomi-65w-gan-charger-sale-suspended-due-to-potential-vulnerability/">Xiaomi 65W GaN charger sale suspended due to potential vulnerability</a> appeared first on <a rel="nofollow" href="https://www.gizmochina.com">Gizmochina</a>.</p>
]]></content:encoded>
					
		
		
			</item>
		<item>
		<title>Samsung and Google Camera apps vulnerable to hijacking, fix is on the way</title>
		<link>https://www.gizmochina.com/2019/11/21/samsung-google-camera-apps-vulnerable-hijacking/</link>
		
		<dc:creator><![CDATA[Jeet]]></dc:creator>
		<pubDate>Thu, 21 Nov 2019 05:13:44 +0000</pubDate>
				<category><![CDATA[News]]></category>
		<category><![CDATA[Google]]></category>
		<category><![CDATA[Samsung]]></category>
		<category><![CDATA[vulnerablity]]></category>
		<guid isPermaLink="false">https://www.gizmochina.com/?p=290606</guid>

					<description><![CDATA[<img width="300" height="180" src="https://www.gizmochina.com/wp-content/uploads/2019/07/Samsung-Galaxy-Note-10-camera-300x180.png?x44794" class="webfeedsFeaturedVisual wp-post-image" alt="Samsung Galaxy Note 10 camera" loading="lazy" style="display: block; margin: auto; margin-bottom: 5px;max-width: 100%;" link_thumbnail="" srcset="https://www.gizmochina.com/wp-content/uploads/2019/07/Samsung-Galaxy-Note-10-camera-300x180.png 300w, https://www.gizmochina.com/wp-content/uploads/2019/07/Samsung-Galaxy-Note-10-camera.png 660w" sizes="(max-width: 300px) 100vw, 300px" /><p>A new bug has been found in the camera app from Google, Samsung, and other OEMs which can secretly spy on the owner using their own phone’s cameras. For the hijacking to succeed, all the malicious app needs is to be granted data storage permissions. Google has been lately focusing on securing the user data with [&#8230;]</p>
<p>The post <a rel="nofollow" href="https://www.gizmochina.com/2019/11/21/samsung-google-camera-apps-vulnerable-hijacking/">Samsung and Google Camera apps vulnerable to hijacking, fix is on the way</a> appeared first on <a rel="nofollow" href="https://www.gizmochina.com">Gizmochina</a>.</p>
]]></description>
										<content:encoded><![CDATA[<img width="300" height="180" src="https://www.gizmochina.com/wp-content/uploads/2019/07/Samsung-Galaxy-Note-10-camera-300x180.png?x44794" class="webfeedsFeaturedVisual wp-post-image" alt="Samsung Galaxy Note 10 camera" loading="lazy" style="display: block; margin: auto; margin-bottom: 5px;max-width: 100%;" link_thumbnail="" srcset="https://www.gizmochina.com/wp-content/uploads/2019/07/Samsung-Galaxy-Note-10-camera-300x180.png 300w, https://www.gizmochina.com/wp-content/uploads/2019/07/Samsung-Galaxy-Note-10-camera.png 660w" sizes="(max-width: 300px) 100vw, 300px" /><p>A new bug has been found in the camera app from Google, <a href="https://www.gizmochina.com/tag/samsung">Samsung</a>, and other OEMs which can secretly spy on the owner using their own phone’s cameras. For the hijacking to succeed, all the malicious app needs is to be granted data storage permissions.</p>
<p><img loading="lazy" class="size-full wp-image-265921 aligncenter" src="https://www.gizmochina.com/wp-content/uploads/2019/07/Samsung-Galaxy-Note-10-camera.png?x44794" alt="Samsung Galaxy Note 10 camera" width="660" height="396" srcset="https://www.gizmochina.com/wp-content/uploads/2019/07/Samsung-Galaxy-Note-10-camera.png 660w, https://www.gizmochina.com/wp-content/uploads/2019/07/Samsung-Galaxy-Note-10-camera-300x180.png 300w" sizes="(max-width: 660px) 100vw, 660px" /></p>
<p>Google has been lately focusing on securing the user data with the app privacy and the company has employed a more fine-grained permission system that only asked for and granted access to certain hardware capabilities on a case-by-case basis. But unfortunately, a bug reported by <em>Checkmarx</em> last July is able to circumvent that using what looks like a legit non-camera app.</p>
<p>The application would look harmless both to users and to <a href="https://www.gizmochina.com/tag/google">Google</a>’s automated anti-malware systems and it may not even ask for permissions beyond accessing data storage, perhaps to save settings or files. But the bug would allow to hijack camera apps, which also use storage permissions to save photos and videos, and are able to remotely and silently control the camera app to take photos or record videos or even use the camera app’s GPS access to get the phone’s location.</p>
<h6 class="related"><strong>EDITOR&#8217;S PICK: <a href="https://www.gizmochina.com/2019/11/20/oppo-announces-coloros-7-with-lighter-visuals-faster-ui-a-special-flashback-button/">OPPO announces ColorOS 7 with lighter visuals, faster UI, &amp; a special Flashback button</a></strong></h6>
<p>Checkmarx researchers, who discovered the flaw, said in its Tuesday analysis: <em>&#8220;Unfortunately, storage permissions are very broad and these permissions give access to the entire SD card. There are a large number of applications, with legitimate use-cases, that request access to this storage, yet have no special interest in photos or videos. In fact, it’s one of the most common requested permissions observed.&#8221;</em></p>
<p>While the camera app from other OEMs might also be affected, the vulnerability has been named to affect camera apps from Google and Samsung. Following the rules of disclosure, the security research group had already alerted Google about the vulnerability in July, with Samsung acknowledging the bug in August this year. While Google said that the company has already patched the issue, Samsung is yet to give a statement.</p>
<h6 class="related"><strong>UP NEXT: <a href="https://www.gizmochina.com/2019/11/20/redmi-k30-feature-side-mounted-fingerprint-sensor-120hz-display/">Redmi K30 could feature a side-mounted fingerprint sensor, 120Hz display</a></strong></h6>
<p>(<a href="https://www.checkmarx.com/blog/how-attackers-could-hijack-your-android-camera">Source</a>)</p>
<p>The post <a rel="nofollow" href="https://www.gizmochina.com/2019/11/21/samsung-google-camera-apps-vulnerable-hijacking/">Samsung and Google Camera apps vulnerable to hijacking, fix is on the way</a> appeared first on <a rel="nofollow" href="https://www.gizmochina.com">Gizmochina</a>.</p>
]]></content:encoded>
					
		
		
			</item>
	</channel>
</rss>

<!--
Performance optimized by W3 Total Cache. Learn more: https://www.boldgrid.com/w3-total-cache/

Object Caching 37/56 objects using Redis
Page Caching using Disk: Enhanced 
Content Delivery Network Full Site Delivery via cloudflare
Database Caching 15/26 queries in 0.008 seconds using Redis
Fragment Caching 2/3 fragments using Redis

Served from: www.gizmochina.com @ 2026-07-06 10:27:04 by W3 Total Cache
-->