all InfoSec news
CVE-2021-40055: Huawei OTA Insecure SSL Configuration Man-In-The-Middle Vulnerability
May 18, 2022, midnight |
Taszk Labs on taszk.io labs labs.taszk.io
Vulnerability Details Huawei devices - both those running Android and those running HarmonyOS - use Huawei’s custom implementation for applying OTA updates.
OTA updates are packaged into a zip container. The update mechanism has several checks that are meant to ensure the authenticity of OTA images before …
configuration cve huawei insecure man-in-the-middle ssl vulnerability
More from labs.taszk.io / Taszk Labs on taszk.io labs
Full Chain Baseband Exploits, Part 3
4 months, 3 weeks ago |
labs.taszk.io
Full Chain Baseband Exploits, Part 2
4 months, 3 weeks ago |
labs.taszk.io
Full Chain Baseband Exploits, Part 1
4 months, 3 weeks ago |
labs.taszk.io
Jobs in InfoSec / Cybersecurity
Social Engineer For Reverse Engineering Exploit Study
@ Independent study | Remote
SITEC- Systems Security Administrator- Camp HM Smith
@ Peraton | Camp H.M. Smith, HI, United States
Cyberspace Intelligence Analyst
@ Peraton | Fort Meade, MD, United States
General Manager, Cybersecurity, Google Public Sector
@ Google | Virginia, USA; United States
Cyber Security Advisor
@ H&M Group | Stockholm, Sweden
Engineering Team Manager – Security Controls
@ H&M Group | Stockholm, Sweden