OnePlus Phones Vulnerable to SMS Theft Due to Unfixed Zero-Day Flaw

September 23, 2025 at 04:21 PM

•

1 min read

OnePlus Phones Vulnerable to SMS Theft Due to Unfixed Zero-Day Flaw — Photo: theregister.com

TL;DR Summary

Security researchers Rapid7 have identified a critical Android vulnerability in OnePlus devices running OxygenOS 12 that allows malicious apps to read SMS and MMS messages without user permission, potentially bypassing multi-factor authentication and exposing sensitive data. Despite multiple attempts, OnePlus has not responded to security disclosures, leading Rapid7 to publicly disclose the flaw, which affects numerous devices and versions.

Topics:technology #android-bug #cve-2025-10184 #oneplus #rapid7 #sms-security-vulnerability #technology

Share this article

Rapid7: OnePlus phones vulnerable to SMS theft since 2021 theregister.com
Security researchers spot high-impact vulnerability in OxygenOS Android phones Cyber Daily
OnePlus Devices Impacted by Unfixed Zero-Day Allowing SMS Theft CyberInsider

Reading Insights

Total Reads

Unique Readers

Time Saved

3 min

vs 3 min read

Condensed

90%

573 → 59 words

Want the full story? Read the original article

Read on theregister.com

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights