The Indian Computer Emergency Response Team (CERT-In) has issued a warning for Android users regarding security vulnerabilities affecting recent versions of the Android operating system. These vulnerabilities, recently patched by Google, Qualcomm, and MediaTek, were highlighted in the Android Security Bulletin for March.
CERT-In's advisory, issued on Tuesday, identifies vulnerabilities across various components of the Android OS, including Framework, System, AMLogic, Arm, MediaTek, and Qualcomm components. These vulnerabilities are rated as "High" severity and impact Android versions 12 (including 12L), 13, and 14.
The cybersecurity agency reported that these vulnerabilities could allow unauthorized access to private information, elevation of privileges, execution of malicious code, or initiation of denial of service (DoS) attacks on targeted devices.
Google's detailed report on the Android Security Bulletin outlines fixes for bootloader vulnerabilities on devices with AMLogic components, flaws in Mali (Arm) components, and security issues affecting Wi-Fi and kernels on Qualcomm devices.
Additionally, Samsung has announced protection against nine Security Vulnerability Exposures (SVEs) affecting Wi-Fi, AppLock, and other parts of the OS, including the bootloader. This protection comes through the latest Security Maintenance Release (SMR) Mar-2024 Release 1 update, addressing undisclosed SVE items.
CERT-In advises users to ensure their smartphones are updated with the latest monthly security patches to mitigate known vulnerabilities. Google's Android Security Bulletin confirms that devices updated with the 2024-03-05 security patch level are safeguarded against these security flaws.
0 Comments