Security Flaw in OPPO Clone Phone Exposes User Data via Weak WiFi Hotspots

A serious security vulnerability has been identified in OPPO's Clone Phone feature, potentially exposing sensitive user data through inadequately secured WiFi hotspots. Designated as CVE-2025-27387, this flaw affects ColorOS 15.0.2 and earlier versions, carrying a high-severity CVSS score of 7.4 out of 10.

The issue arises from the use of weak WPA passphrases as the only security measure for file transfers. According to the GitHub Advisory Database, this vulnerability falls under CWE-200 (Information Exposure), allowing malicious actors within WiFi range to exploit it without needing special privileges or user interaction.

When users initiate data migration, a WiFi hotspot is created with weak authentication, enabling nearby attackers to intercept sensitive information such as contacts, messages, and photos. Security researcher Florian Draschbache discovered this flaw in May 2025, prompting immediate attention from cybersecurity experts.

OPPO has issued an advisory highlighting the urgency of addressing this security gap. Users of ColorOS 15.0.2 and earlier should refrain from using the Clone Phone feature in untrusted environments until a patch is released. They are also advised to monitor official OPPO security bulletins for updates and consider alternative secure file transfer methods for sensitive data.