Techly NewsGet the app

Get the latest tech news

Flaw in OnePlus phones lets apps read your texts, fix rolling out soon


The flaw lets apps snoop on your SMS/MMS without permission, putting two-factor codes at risk.

Researchers at Rapid7 found a flaw, identified as CVE-2025-10184, that lets harmful apps read and send your text messages without your permission. In practice, this means an attacker could intercept sensitive texts like two-factor authentication (2FA) codes or even send out messages on your behalf, opening the door to account takeovers and fraud. The company added new components called PushMessageProvider, PushShopProvider, and ServiceNumberProvider, but did not set proper limits on write permissions.

Get the Android app

Or read this on Android Central

Read more on:

Photo of OnePlus

OnePlus

Photo of flaw

flaw

Photo of apps

apps

Related news:

News photo

OnePlus is giving away free smartwatches if you buy its latest flagship - here's how to qualify

News photo

Electron-based apps cause system-wide lag on macOS 26 Tahoe

News photo

Wi-Fi cutting out on your iPhone 17? You're not alone - but a fix is coming

« Facebook and Instagram to offer ad-free service in UK for up to £3.99 a month
Engadget Podcast: How Carvana is trying to fix the broken car buying world »