In a recent security bulletin, Google alerted Android users about three critical vulnerabilities that require immediate patching. The Android vulnerability 2023 report states that these vulnerabilities can have serious consequences, including remote code execution (RCE) and privilege escalation, and affect Android versions 11, 12, 12L, and 13.
Two of the vulnerabilities — CVE-2023-21085 and CVE-2023-21096 — have been found in the System component of Android.
Cyber attackers can leverage these vulnerabilities by using a malicious file to trick users into executing arbitrary code. Android users must take prompt action and apply the necessary security patches to safeguard their devices.
Android vulnerability 2023 report: Update immediately!
A critical security flaw, CVE-2022-38181, has been detected in the Arm Mali GPU kernel driver. The vulnerability allows attackers to gain elevated system privileges, enabling them to execute arbitrary code.
The vulnerability has been exploited in targeted attacks since November 2022, underscoring the urgency of patching it.
In light of these serious security issues, Google urges Android users to update their devices to the latest security patch level, 2023-04-05 or later.
Users must take proactive measures to safeguard their devices and prevent potential attacks.
Checking their Android version, security update, and Google Play system levels in the Settings app is a good start.
They will receive notifications when updates are available, however, they can also manually check for updates by going to About phone or About device and tapping on Software updates.
Android users should take these vulnerabilities seriously and update their devices to stay protected against cyber attacks.
By regularly checking for updates and keeping their devices up-to-date, users can ensure the security and privacy of their personal information.
