LEFT SIDEBAR AD

Hidden in mobile, Best for skyscrapers.

Android security: Google updates fix these five critical vulnerabilities

1 year ago 147
BOOK THIS SPACE FOR AD
ARTICLE AD

Google's Android security updates for June 2022 fix 41 vulnerabilities, including five classed as critical. 

The updates, for the Android operating system versions 10, 11 and 12, have been detailed in Google's Android Security Bulletin.

Among the most severe security vulnerabilities receiving updates is CVE-2022-20130, a vulnerability in Android's Media Framework that could lead to arbitrary code execution, allowing an attacker to run commands with no additional privileges needed and CVE-2022-20210, a critical vulnerability in Unisoc chip firmware that allows attackers to remotely crash phones, leading to denial of service or remote code execution. 

SEE: A winning strategy for cybersecurity (ZDNet special report)

Unisoc is the fourth largest smartphone chip manufacturer in the world, accounting for an 11% share of the global market, with Unisoc chips used in millions of Android devices, particularly in Africa and Asia.  

A successful remote code execution attack could provide attackers with complete control of the Android device and all information on it, putting the user's privacy at risk.

The Android security updates also fix three critical security vulnerabilities in Android's system components. These are CVE-2022-20127, CVE-2022-20140 and CVE-2022-20145, a series of vulnerabilities in Android System that could lead to local escalation of privileges with no additional execution privileges needed. These vulnerabilities could enable attackers to plant malware on the device, putting the user at risk of data theft, or their device being secretly monitored with spyware

Alongside providing security updates for five critical vulnerabilities, Google's Android Security Bulletin for June 2022 also delivers fixes for 36 other vulnerabilities, all rated as high severity.  

While there's currently no evidence that any of these vulnerabilities are being exploited in the wild, Android users are urged to apply the updates as soon as possible in order to protect their smartphones – and themselves – from attackers looking to exploit them.  

MORE ON CYBERSECURITY

Google: These 'curated' open-source packages will improve software supply chain securityThousands of Android users downloaded this password-stealing malware disguised as anti-virus from Google Play5 quick tips for better Android phone security now (yes, it's this easy)Android security: Flaw in an audio codec left two-thirds of smartphones at risk of snooping, say researchersGoogle: We're spotting more zero-day bugs than ever. But hackers still have it too easy
Read Entire Article
  3. Android security: Google updates fix these five critical vulnerabilities

Related

Google yet again delays killing third-party cookies in Chrome. Here's what you need to know

Google yet again delays killing third-party cookies in Chrome. Here's what you need to know

The best free VPNs

The best free VPNs

How a new law protects your thoughts from tech companies – and why it matters

How a new law protects your thoughts from tech companies – and why it matters

Brave search engine adds privacy-focused AI - no Google or Bing needed

Brave search engine adds privacy-focused AI - no Google or Bing needed

The Blink Mini 2 is seeing its first ever discount at 25% off

The Blink Mini 2 is seeing its first ever discount at 25% off

The best AirTag wallets of 2024: Expert tested and recommended

The best AirTag wallets of 2024: Expert tested and recommended

Trending

1. Liverpool
2. Axis Bank Q4
3. Everton vs Liverpool
4. Mohit Sharma
5. JEE mains Session 2 result
6. FC Goa
7. NEET
8. Axar Patel
9. Nitin Gadkari
10. Priyanka Gandhi

Popular

1-click RCE in Electron Applications

1-click RCE in Electron Applications

Install waybackurls on Kali Linux

Install waybackurls on Kali Linux

Over 40 Apps With More Than 100 Million Installs Found Leaking AWS Keys

Over 40 Apps With More Than 100 Million Installs Found Leaking AWS Keys

Microsoft Office Professional Plus 2019 (x64 & x86) Multilingual + Pre-Activated

Microsoft Office Professional Plus 2019 (x64 & x86) Multilingual + Pre-Activated

Install DalFox on Kali Linux

Install DalFox on Kali Linux

Adobe Master Collection CC 2022 v25.08.2022 (x64) Multilingual Pre-Activated

Adobe Master Collection CC 2022 v25.08.2022 (x64) Multilingual Pre-Activated

‘We are not motivated by profits’ – Open Bug Bounty maintainers on finding a niche in the crowdsourced AppSec market

‘We are not motivated by profits’ – Open Bug Bounty maintainers on finding a niche in the crowdsourced AppSec market

Maxon CINEMA 4D Studio S22.123 (x64) Multilingual + Crack

Maxon CINEMA 4D Studio S22.123 (x64) Multilingual + Crack

Just Gopher It: Escalating a Blind SSRF to RCE for $15k

Just Gopher It: Escalating a Blind SSRF to RCE for $15k

SketchUp Pro 2020 v20.2.172 (x64) Multilingual + Patch

SketchUp Pro 2020 v20.2.172 (x64) Multilingual + Patch

BOOK THIS SPACE FOR AD
RIGHT SIDEBAR BOTTOM AD
Bengali (Bangladesh) Bengali (Bangladesh) · English (United States) English (United States) ·
About Us · Terms & Condition · Contact Us
© Security Alert 2024. All rights are reserved