The vulnerability exists in the network connection of victim.
Vulnerability found Tencent Blade is a security unit of the Chinese gaming company Tencent. About the bugs reported during a security conference Black Hat in Las Vegas. These errors are called QualPwn.
Flaws enclosed in the processor Snapdragon system and its method of connection to Wi-Fi networks which are marked as safe. However, when connected to the same network an attacker could send data packets with malicious code to the smartphone of the victim. Thus, the device need not take up enough to be in range of a Wi-Fi network of the victim.
Tencent Blade noted that the tested Snapdragon 835 and 845, which is owned by Google, Pixel 2 and Pixel. They also used the error reporting as an example. But the report said that in addition to presented, included in the risk group processors models: 636, 665, 670, 675, 710, 712, 730, 820, 855. Moreover, he brought this group even Snapdragon 850 and 8CX, which are used in the production of laptops and a few other processors, the Internet of things. For owners of smartphones with Android, this news means that almost all of them at risk. Although the new devices have to be protected from such.
Qualcomm later released a patch that closes the error and reported the warning to all licensees, so they quickly updated their system and prepared necessary corrections. The company confirmed that the vulnerability worked on almost all Snapdragon. Also the company recommended as soon as possible to test security updates and agree to install them when available.