Vulnerability In Android TV’s Expose Private Google Photos

Another venture associated with Google has failed at protecting users’ privacy. This time, the flaw lies in Android TV devices. As revealed, Android TV devices have a severe vulnerability that exposes Google Photos of users to others.

Serious Flaw In Android TV Devices

Researchers from XDA Developers have elaborated a security vulnerability in Android TV devices. This flaw could potentially result in leaking users’ Google Photos. They have shed light on this problem in their blog post.

Reportedly, an Indian user Prashant first noticed the bug which he shared in one of his tweets.

Then, he further shared that he might also be able to view private Google Photos of other users. Precisely, he saw a list of linked users appearing under the settings tab.

Prashant spotted this issue with his VU Android TV. But, further discussion on his tweet revealed that Android devices by IFFALCO also exhibit the same vulnerability. Moreover, a user could even view other users’ photos in Ambient Mode.

It eventually turned out the problem existed at the level of the Google Home app. This could consequently affect other Android Smart TVs too. As reported by XDA Developers, Vu Televisions also confirmed the same.

“Vu Televisions were recently informed about a malfunction of the Google Home App in an Android TV. After verifying the incident Vu Televisions informed Google who has confirmed it was a software malfunction of the Google Home App”

Google’s Response

Google took notice of Prashant’s complaint and the following complaints reporting the same issue. Initially, they suggested various methods to resolve the problem, such as resetting the TV. But nothing worked! Eventually, they disabled Google Photos for Android TV as an immediate remedy.

For now, no permanent fix is available. Yet, Google is working to patch the flaw quickly. Vu Televisions also confirmed it.

“We thank our customer who brought this to our notice, and we can confirm that Google is rectifying their fault immediately.”

We shall update our readers as soon as we hear of any developments in this regard.

Related posts

Water Facilities Must Secure Exposed HMIs – Warns CISA

Microsoft December Patch Tuesday Arrived With 70+ Bug Fixes

NachoVPN Attack Risks Corporate VPN Clients