Samsung’s security team has been alerted of a vulnerability in the company’s OTA update system, which allowed internal builds to be leaked publicly. The leak was facilitated by a C# tool that interacted with Samsung’s Firmware Over-The-Air (FOTA) servers and could access internal development builds.
The vulnerability led to numerous leaks of One UI 8 features, including redesigned apps, improvements to Secure Folder, and overhauls to Samsung DeX. However, the leak was eventually reported to Samsung’s security team by a user named Farlune, who discovered the tool using a popular decryption software called CheckFirm.
Farlune sent an anonymous message to Samsung’s security team, detailing the vulnerability and the C# file that was being used to exploit it. The message highlighted the risk of confidential internal builds being shared publicly, potentially exposing unpatched software.
In response to this report, Samsung has taken steps to patch the vulnerability, bringing an end to the One UI 8 leak frenzy. This development is a blow to the Samsung enthusiast community, which had been eagerly awaiting information about upcoming features and updates.
Source: https://sammyguru.com/the-end-of-one-ui-leaks-samsung-patches-popular-loophole-in-update-system