Volerion logoVolerion
Volerion logoVolerion

Motorola Factory Test Component Improper Authentication Vulnerability Allowing Unauthorized Access to Device Settings

Vulnerability

A vulnerability allowing improper authentication has been identified in the Motorola Factory Test component (com.motorola.motocit) on Motorola phones with a Security Patch Level prior to 2026-04-05. This vulnerability arises from a reference to a writable file descriptor in external storage, which third-party apps can exploit to open a TCP server. This exposure of sensitive permissions and data could enable a local attacker to bypass permission checks and access protected device settings.

Impact

Exploitation of this vulnerability could lead to unauthorized access to protected device settings, allowing a local attacker to bypass permission checks and manipulate sensitive configurations.

Remediation

Users are advised to update their Motorola phones to the latest software version. The vulnerability is fixed in versions with a Security Patch Level of 2026-04-05 or later.

Added: May 19, 2026, 4:20 PM
Updated: May 19, 2026, 4:20 PM

Vulnerability Rating

Custom Algorithm
spread
0.0
impact
1.7
exploitability
3.3
remediation
0.0
relevance
8.8
threat
0.0
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.