Preinstalled Apps on Ulefone, Krüger&Matz Phones Let Any App Reset Device, Steal PIN

Three security vulnerabilities were disclosed in preloaded Android applications on Ulefone and Krüger&Matz smartphones. These vulnerabilities allow any app to perform a factory reset, encrypt applications, and steal PIN codes. The patch status of these flaws remains unclear.