Remote Call Hijacking and Unauthorized Control of temi Robox OS

Remote Call Hijacking and Unauthorized Control of temi Robox OS

CVE-2020-16167 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Missing Authentication for Critical Function in temi Robox OS prior to 120, temi Android app up to 1.3.7931 allows remote attackers to receive and answer calls intended for another temi user. Answering the call this way grants motor control of the temi in addition to audio/video via unspecified vectors.

Learn more about our Cis Benchmark Audit For Google Android.