A flaw has been discovered in the HUAWEI AppGallery recently, whereby a vulnerability is allowing users to download paid apps in the store for free. Moreover, it was also found that the AppGallery API doesn’t offer any protection for paid apps in the store.
Discovered by Android developer Dylan Roussel who shared the finding via his blog, he had already informed the vulnerability to HUAWEI in February earlier this year. However, the issue still persists until today.
According to Roussel, those that have the technical know-how can easily obtain an APK link for paid apps on the AppGallery and download them without paying. In fact, he actually managed to download and use multiple apps by exploiting the flaw.
He further said that the vulnerability is not from the app developers’ side, but something that must fix from HUAWEI’s end. Well, let’s hope that the Chinese tech giant fix the issue soon as the flaw could potentially lead to data privacy issues too for users and developers.
What do you guys think? Share your thoughts with us in the comments below and stay tuned to TechNave for the latest trending tech news.
COMMENTS