Your OnePlus phone is probably at risk from a major SMS vulnerability

Here is a 175-word summary of the news article: A major security vulnerability has been discovered in many recent OnePlus smartphone models, leaving users' SMS and MMS data exposed. Security firm Rapid7 discovered the flaw, which relates to changes OnePlus made to the Android Telephony service. This vulnerability allows installed apps to access SMS data without user permission or consent. The issue affects OnePlus devices running OxygenOS 12, 14, and 15, but not those still on the older OxygenOS 11 based on Android 11. While Rapid7 only tested the OnePlus 8T and 10 Pro 5G, the firm believes the flaw is likely not hardware-specific, instead affecting a core Android component. OnePlus has acknowledged the problem and says a fix will be rolled out globally in mid-October. Until then, Rapid7 recommends OnePlus users only install trusted apps, uninstall unnecessary ones, use encrypted messaging apps, and avoid SMS-based two-factor authentication. The security firm tried to privately disclose the issue to OnePlus but was unsuccessful, leading to the public announcement.