OnePlus Users Face Security Risks from OxygenOS Vulnerability

With smartphones continuously expanding, OnePlus has long been recognised as one of the leading brands in the market, delivering premium performance at an affordable price point and building a loyal user base within the competitive Android market for years. 

The influx of cyber threats, however, does not make even the most admired devices immune to being compromised.

There has now been a critical security flaw discovered in OxygenOS, the proprietary OS that powers OnePlus smartphones, that is critical to security. This vulnerability, identified as CVE-2025-10184, is not specific to OnePlus but has been found in other Android devices as well. 

It is believed that millions of users could be compromised by spying and data theft.

A key concern in this case is that this bug remains unpatched on OnePlus devices, according to Rapid7 researcher Calum Hutton. As a result of this, a large portion of users are vulnerable to exploitation by malicious actors. Researchers have warned that OxygenOS can be exploited in a particularly damaging manner. 

Attackers would be able to send SMS messages to a victim’s device without knowing they were being sent and, more importantly, intercept and read incoming messages.

It is possible that SMS can pose a security threat to sensitive data, such as one-time passcodes and multi-factor authentication tokens, if SMS is used as the seco

[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.