Physical Address
304 North Cardinal St.
Dorchester Center, MA 02124
Qualcomm giant chipmaker Breasts On Monday fixed a series of weaknesses in dozens of chips, including three Zero days The company said it might be in use as part of piracy campaigns.
Qualcomm cited a group of Google, or TAG, which is achieving government -backed electronic attacks, saying that the three defects “may be under a limited and targeted exploitation.”
According to the company’s bulletin, Google’s Android Aman’s safety team has reported the three zero days (CVE-2015-21479, CVE-2015-21480 and Cve-2025-27038) to Qualcomm in February. Zero days are unknown security vulnerability points for programs or hardware maker at the time of their discovery Very valuable For the e -criminal and the governmental infiltrators.
Due to the open and distributed Android nature, it is now up to the hardware manufacturers to apply the corrections provided by Qualcomm, which means that some devices may still be weak for several other weeks, despite the fact that there are corrections available.
Contact us
Do you have more information about these days Qualcomm Zero? Or other exploits of zero day or makers on zero? From a non-work device and network, you can connect to Lorenzo Franceschi-bicchierai safe Email.
“The corrections” were provided with (hardware makers) in May with a strong recommendation to publish the update on the affected devices as soon as possible. “
Google’s spokesman Ed Fernandez told the company that the company’s Pixel devices are not affected by these weaknesses.
Upon accessed by Techcrunch, a Google spokesman immediately did not provide more information about these weaknesses, and the conditions in which Tag was found.
Qualcomm did not respond to a request for comment.
The slides in mobile devices are frequent targets for infiltrators and exploitation developers for zero day because chips generally have broad access to the rest of the operating system, which means that infiltrators can jump from there to other parts of the device that may carry sensitive data.
In the past few months, there have been documented cases of exploitation against Chipsets Qualcomm. Last year, Amnesty International set off Qualcomm zero This was used by the Serbian authorities, probably using the Cellebrite operating tool maker.