Samsung’s high-end device, the Galaxy S6 Edge, has been exposed as having a number of vulnerabilities, which researchers say are "trivially exploitable."
A team at Google’s Zero Day Project attacked the device, finding 11 vulnerabilities within the popular phone, and alerted Samsung.
Most worryingly, a "directory traversal bug" allowed the team to get into the phone, and change files on the system.
Another vulnerability allowed emails to be forwarded to another account, while another means that a downloaded image can be used to escalate priviliges in the Samsung Gallery app or the media scanning process.
Issues were found with the drivers, including a bug that meant that "memory corruption in a driver that could be used to escalate from any unprivileged application or code execution to kernel."
Many of the vulnerabilities were fixed in October’s update from Samsung, with others to be done in November.