52 matches found
CVE-2018-14990
The Coolpad Defiant device with a build fingerprint of Coolpad/cp3632a/cp3632a:7.1.1/NMF26F/099480857:user/release-keys, the ZTE ZMAX Pro with a build fingerprint of ZTE/P895T20/urd:6.0.1/MMB29M/20170418.114928:user/release-keys, and the T-Mobile Revvl Plus with a build fingerprint of...
CVE-2018-14990
CVE-2018-14990 affects multiple Android devices (Coolpad Defiant, ZTE ZMAX Pro, T-Mobile Revvl Plus) due to a pre-installed Rich Communication Services (RCS) app. The vulnerable components include a package named com.suntek.mway.rcs.app.service (with a TestReceiver broadcast receiver) and a refac...
Code injection
The Coolpad Canvas device with a build fingerprint of Coolpad/cp3636a/cp3636a:7.0/NRD90M/093031423:user/release-keys contains a platform app with a package name of com.qualcomm.qti.modemtestmode versionCode=24, versionName=7.0 that contains an exported service app component named...
CVE-2018-15004
The Coolpad Canvas device with a build fingerprint of Coolpad/cp3636a/cp3636a:7.0/NRD90M/093031423:user/release-keys contains a platform app with a package name of com.qualcomm.qti.modemtestmode versionCode=24, versionName=7.0 that contains an exported service app component named...
CVE-2018-15004
The Coolpad Canvas device with a build fingerprint of Coolpad/cp3636a/cp3636a:7.0/NRD90M/093031423:user/release-keys contains a platform app with a package name of com.qualcomm.qti.modemtestmode versionCode=24, versionName=7.0 that contains an exported service app component named...
CVE-2018-15004
The Coolpad Canvas device with a build fingerprint of Coolpad/cp3636a/cp3636a:7.0/NRD90M/093031423:user/release-keys contains a platform app with a package name of com.qualcomm.qti.modemtestmode versionCode=24, versionName=7.0 that contains an exported service app component named...
CVE-2018-15004
CVE-2018-15004 concerns the Coolpad Canvas Android device where a platform app (com.qualcomm.qti.modemtestmode) exposes MbnTestService, enabling any app to set persist.service.logr.enable as the com.android.phone user. When enabled, a malicious app (e.g., com.yulong.logredirect) can trigger syste...
Cool was traced to the presence of a backdoor threat to millions of users information security-vulnerability warning-the black bar safety net
Recently, security research firm PaloAlto Networks found that the domestic mobile phone manufacturers coolpad Android phone install the one named“CoolReaper”a backdoor program that may be related to more than 1, 0 0 0 million users of information security. ! Kupa was traced to the presence of a...
Ryan Olson on the CoolReaper Backdoor
Dennis Fisher talks with Ryan Olson of Palo Alto Networks about their discovery and analysis of the CoolReaper backdoor on some Coolpad Android devices sold in China. Download: digitalunderground174.mp3 Music by Chris Gonsalves...
Built-In Backdoor Found in Popular Chinese Android Smartphones
Chinese smartphone manufacturers have been criticized many times for suspected backdoors in its products, the popular Chinese smartphone brands, Xiaomi and Star N9500 smartphones are the top examples. Now, the China's third-largest mobile and world's sixth-largest phone manufacturer 'Coolpad', ha...
CoolReaper Backdoor Found On CoolPad Android Mobile Devices
A popular Android smartphone sold primarily in China and Taiwan but also available worldwide, contains a backdoor from the manufacturer that is being used to push pop-up advertisements and install apps without users’ consent. The Coolpad devices, however, are ripe for much more malicious abuse,...
The most"secure”phone coolpad S6 a days even the explosion of the five vulnerability-vulnerability warning-the black bar safety net
Coolpad has recently been in investing in the advocacy of“safe mobile phone”, it's the coolpad S6 is billed as China's first officially certified“safe mobile phone”, but this argument does not seem too be white hat recognition. This phone recently in the black bar vulnerability on the platform wa...