cvedb.io
CVE-2021-41848
HIGH · CVSS 7.8
EPSS exploitation probability: 0%
Published 2022-03-11T23:15:08.840 · Last modified 2026-06-17T04:09:00.833

Summary

An issue was discovered in Luna Simo PPR1.180610.011/202001031830. It mishandles software updates such that local third-party apps can provide a spoofed software update file that contains an arbitrary shell script and arbitrary ARM binary, where both will be executed as the root user with an SELinux domain named osi. To exploit this vulnerability, a local third-party app needs to have write access to external storage to write the spoofed update at the expected path. The vulnerable system binary (i.e., /system/bin/osi_bin) does not perform any authentication of the update file beyond ensuring that it is encrypted with an AES key (that is hard-coded in the vulnerable system binary). Processes executing with the osi SELinux domain can programmatically perform the following actions: install ap

Affected products

bluproducts — g90_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when bluproducts ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.