Attackers are currently targeting Android devices and actively exploiting the security vulnerability. However, the attacks are not easily possible. Apart from the exploited vulnerability, developers have closed other vulnerabilities in Android 12, 12L, 13, and 14.
Advertisement
Security flaws
A warning message appearsExploited Vulnerability (CVE-2024-36971 “High“). This is related to the kernel. At this point, attackers can launch malicious code attacks in a way that is not described in detail. For an attack to work, an attacker must already have the authority to be able to execute commands on the system. The extent to which the attacks will occur is still unclear. Google speaks of targeted attacks on a limited scale.
Other dangerous vulnerabilities affect the framework and the system. At these points, attackers can, among other things, leak information or gain higher user rights. Most of the gaps are related to the threat level”High“. In addition, various components from Qualcomm and Imagination Technologies are also affected. This affects, among other things, displays and WLAN components.
is considered a vulnerability (CVE-202423350)”Serious“. It is currently unknown what impact successful attacks could have in this context. However, based on the classification, it can be assumed that attackers could completely compromise devices in many cases.
Windows & Co. with downloads on iPad and iPhone: Apple officially says d’accord
In addition to Google, other manufacturers regularly publish security patches – but usually only for certain product lines. Devices from other manufacturers receive updates much later or, in the worst case, not at all.
updates available
If you have an Android device that is still in support, you should make sure in the settings Patch level 2024-08-01 Or 2024-08-05 is installed. In addition to Google, Samsung, among other companies, publishes monthly security updates for selected devices (see box).
(Of)
Apple Watch SE: Plastic and colorful?
