{"id":2147,"date":"2026-03-13T20:32:17","date_gmt":"2026-03-13T20:32:17","guid":{"rendered":"https:\/\/odakhaber.site\/?p=2147"},"modified":"2026-03-13T20:32:17","modified_gmt":"2026-03-13T20:32:17","slug":"mediatek-islemcili-cihazlarda-guvenlik-acigi-endisesi","status":"publish","type":"post","link":"https:\/\/odakhaber.site\/?p=2147","title":{"rendered":"MediaTek \u0130\u015flemcili Cihazlarda G\u00fcvenlik A\u00e7\u0131\u011f\u0131 Endi\u015fesi"},"content":{"rendered":"\n
\"\"\/<\/figure>\n\n\n\n

MediaTek i\u015flemcili Android telefonlarda ciddi bir g\u00fcvenlik a\u00e7\u0131\u011f\u0131 tespit edildi. G\u00fcvenlik ara\u015ft\u0131rmac\u0131lar\u0131, baz\u0131 cihazlarda telefon kapal\u0131yken bile hassas kullan\u0131c\u0131 verilerinin ele ge\u00e7irilebilece\u011fini ortaya koydu. Yap\u0131lan testlerde CMF Phone 1 modelinin yaln\u0131zca 45 saniye i\u00e7inde hacklenebildi\u011fi<\/strong> belirtildi.<\/p>\n\n\n\n

Kripto donan\u0131m c\u00fczdan\u0131 \u015firketi Ledger\u2019in donan\u0131m g\u00fcvenlik ara\u015ft\u0131rma ekibi Donjon<\/strong> taraf\u0131ndan ke\u015ffedilen bu a\u00e7\u0131k, Trustonic\u2019in G\u00fcvenilir Y\u00fcr\u00fctme Ortam\u0131 (TEE)<\/strong> teknolojisini kullanan milyonlarca cihaz\u0131 etkileyebilecek potansiyele sahip.<\/p>\n\n\n\n

45 saniyede g\u00fcvenlik a\u015f\u0131ld\u0131<\/h3>\n\n\n\n

Ledger CTO\u2019su Charles Guillemet, g\u00fcvenlik a\u00e7\u0131\u011f\u0131n\u0131 g\u00f6stermek i\u00e7in CMF Phone 1 modelini kulland\u0131klar\u0131n\u0131 ve cihaz\u0131n korumal\u0131 verilerine bir dakikadan k\u0131sa s\u00fcrede eri\u015febildiklerini a\u00e7\u0131klad\u0131. Ara\u015ft\u0131rma ekibi, telefonu bir diz\u00fcst\u00fc bilgisayara ba\u011flayarak yakla\u015f\u0131k 45 saniye i\u00e7inde cihaz\u0131n temel g\u00fcvenlik katmanlar\u0131n\u0131 a\u015fmay\u0131 ba\u015fard\u0131<\/strong>.<\/p>\n\n\n\n

Ara\u015ft\u0131rmac\u0131lara g\u00f6re sald\u0131r\u0131, Android i\u015fletim sistemi ba\u015flat\u0131lmadan da \u00e7al\u0131\u015fabiliyor. Telefon bilgisayara ba\u011fland\u0131\u011f\u0131 anda sald\u0131r\u0131 s\u00fcreci otomatik olarak ba\u015flayabiliyor. Bu y\u00f6ntemle cihaz\u0131n PIN kodunun ele ge\u00e7irilmesi, depolama alan\u0131 \u015fifresinin k\u0131r\u0131lmas\u0131 ve kripto c\u00fczdanlar\u0131n\u0131n kurtarma anahtarlar\u0131n\u0131n (seed phrase)<\/strong> d\u0131\u015far\u0131 aktar\u0131lmas\u0131 m\u00fcmk\u00fcn hale gelebiliyor.<\/p>\n\n\n\n

G\u00fcvenlik mimarisi tart\u0131\u015fma yaratt\u0131<\/h3>\n\n\n\n

Bir\u00e7ok MediaTek cihaz\u0131 hassas verileri korumak i\u00e7in i\u015flemci i\u00e7inde yer alan G\u00fcvenilir Y\u00fcr\u00fctme Ortam\u0131 (TEE)<\/strong> sistemini kullan\u0131yor. Buna kar\u015f\u0131l\u0131k baz\u0131 cihaz \u00fcreticileri verileri korumak i\u00e7in ayr\u0131 g\u00fcvenlik i\u015flemcileri tercih ediyor. \u00d6rne\u011fin Google\u2019\u0131n Pixel telefonlar\u0131nda Titan M2<\/strong>, Apple cihazlar\u0131nda Secure Enclave<\/strong> ve Qualcomm platformlar\u0131nda G\u00fcvenli \u0130\u015flem Birimi<\/strong> gibi \u00f6zel donan\u0131m \u00e7\u00f6z\u00fcmleri bulunuyor.<\/p>\n\n\n\n

Guillemet\u2019e g\u00f6re genel ama\u00e7l\u0131 i\u015flemciler performans ve maliyet odakl\u0131 tasarlan\u0131rken, \u00f6zel g\u00fcvenlik \u00e7ipleri fiziksel sald\u0131r\u0131lara kar\u015f\u0131 daha g\u00fc\u00e7l\u00fc koruma sa\u011flayabiliyor.<\/p>\n\n\n\n

G\u00fcvenlik a\u00e7\u0131\u011f\u0131 bildirildi<\/h3>\n\n\n\n

CVE-2026-20435<\/strong> koduyla kaydedilen g\u00fcvenlik a\u00e7\u0131\u011f\u0131 kamuoyuna a\u00e7\u0131klanmadan \u00f6nce MediaTek\u2019e bildirildi. \u015eirket, 5 Ocak 2026 tarihinde cihaz \u00fcreticilerine gerekli d\u00fczeltmeleri sundu\u011funu ve g\u00fcvenlik g\u00fcncellemelerinin da\u011f\u0131t\u0131lmaya ba\u015flad\u0131\u011f\u0131n\u0131 a\u00e7\u0131klad\u0131.<\/p>\n\n\n\n

MediaTek\u2019in mart ay\u0131 g\u00fcvenlik b\u00fcltenine g\u00f6re a\u00e7\u0131k; OPPO, vivo, OnePlus ve Samsung gibi markalar\u0131n giri\u015f seviyesinden amiral gemisine kadar bir\u00e7ok modelini etkileyebiliyor.<\/p>\n\n\n\n

Donjon ekibi ge\u00e7ti\u011fimiz y\u0131l da MediaTek Dimensity 7300<\/strong> yonga setinde benzer g\u00fcvenlik zafiyetleri tespit etmi\u015fti. Ancak MediaTek o d\u00f6nemde s\u00f6z konusu sald\u0131r\u0131lar\u0131n \u00e7ipin hedeflenen tehdit modelinin d\u0131\u015f\u0131nda kald\u0131\u011f\u0131n\u0131 savunmu\u015ftu.<\/p>\n\n\n\n

\u015eu an i\u00e7in yeni g\u00fcvenlik a\u00e7\u0131\u011f\u0131n\u0131n k\u00f6t\u00fc niyetli ki\u015filer taraf\u0131ndan aktif olarak kullan\u0131l\u0131p kullan\u0131lmad\u0131\u011f\u0131 bilinmiyor. Ancak uzmanlar, kullan\u0131c\u0131lar\u0131n telefonlar\u0131n\u0131 g\u00fcncel tutmalar\u0131n\u0131n ve yay\u0131nlanan g\u00fcvenlik yamalar\u0131n\u0131 y\u00fcklemelerinin<\/strong> \u00f6nemli oldu\u011funu vurguluyor.<\/p>\n\n\n\n

KARDE\u015e HABER<\/p>\n\n\n\n

https:\/\/mihenkhaber.com\/mediatek-islemcili-cihazlarda-guvenlik-acigi-endisesi<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

MediaTek i\u015flemcili Android telefonlarda ciddi bir g\u00fcvenlik a\u00e7\u0131\u011f\u0131 tespit edildi. G\u00fcvenlik ara\u015ft\u0131rmac\u0131lar\u0131, baz\u0131 cihazlarda telefon kapal\u0131yken bile hassas kullan\u0131c\u0131 verilerinin ele ge\u00e7irilebilece\u011fini ortaya koydu. Yap\u0131lan testlerde CMF Phone 1 modelinin yaln\u0131zca 45 saniye i\u00e7inde hacklenebildi\u011fi belirtildi. Kripto donan\u0131m c\u00fczdan\u0131 \u015firketi Ledger\u2019in donan\u0131m g\u00fcvenlik ara\u015ft\u0131rma ekibi Donjon taraf\u0131ndan ke\u015ffedilen bu a\u00e7\u0131k, Trustonic\u2019in G\u00fcvenilir Y\u00fcr\u00fctme Ortam\u0131 (TEE) teknolojisini kullanan milyonlarca cihaz\u0131 etkileyebilecek potansiyele […]<\/p>\n","protected":false},"author":4,"featured_media":2151,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[40],"tags":[],"class_list":["post-2147","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-teknoloji-haberleri"],"jetpack_featured_media_url":"https:\/\/odakhaber.site\/wp-content\/uploads\/2026\/03\/image-126.png","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/odakhaber.site\/index.php?rest_route=\/wp\/v2\/posts\/2147","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/odakhaber.site\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/odakhaber.site\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/odakhaber.site\/index.php?rest_route=\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/odakhaber.site\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2147"}],"version-history":[{"count":1,"href":"https:\/\/odakhaber.site\/index.php?rest_route=\/wp\/v2\/posts\/2147\/revisions"}],"predecessor-version":[{"id":2152,"href":"https:\/\/odakhaber.site\/index.php?rest_route=\/wp\/v2\/posts\/2147\/revisions\/2152"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/odakhaber.site\/index.php?rest_route=\/wp\/v2\/media\/2151"}],"wp:attachment":[{"href":"https:\/\/odakhaber.site\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2147"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/odakhaber.site\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2147"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/odakhaber.site\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2147"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}