Android users, government has an important warning for you: Details
Despite Google‘s attempt at pushing regular security updates and patches to these devices, there have been instances where Android has made some serious headlines about security lapses.
Recently, CERT-In has issued a new “high severity” warning for Android users. The government body has mentioned that “multiple vulnerabilities have been reported in Android which could be exploited by an attacker to obtain sensitive information, gain elevated privileges and cause denial of service on the targeted system”.
For those unaware, CERT-In is a government body responsible for addressing and managing cybersecurity threats, has flagged these vulnerabilities as high-risk and is urging immediate action.
Why these vulnerabilities exist
Android is susceptible to vulnerabilities stemming from deficiencies in the Framework, System, Google Play system updates, Kernel LTS, Arm components, MediaTek components, Qualcomm components, and Qualcomm closed-source components.
Exploiting these vulnerabilities successfully may empower attackers to acquire sensitive information, escalate privileges, and induce denial of service on the targeted system.
Android versions affected
According to the report, the new vulnerabilities have been found in Android 11, Android 12, Android 12L, Android 13 and even the latest version — Android 14.
What users can do about it
CERT-In has mentioned that users need to apply the latest updates to their devices to overcome these vulnerabilities.
In simple words, users are required to check for the latest updates, especially Android security updates, for their devices and install them if available without fail.
For this, head to Settings → Software update and check for the updates.
List of vulnerabilities found
CVE-2023-40106
CVE-2023-40107
CVE-2023-40109
CVE-2023-40110
CVE-2023-40111
CVE-2023-40114
CVE-2023-40105
CVE-2023-40124
CVE-2023-40113
CVE-2023-40100
CVE-2023-40115
CVE-2023-40104
CVE-2023-40112
CVE-2023-21103
CVE-2023-21111
CVE-2023-28469
CVE-2023-32832
CVE-2023-32834
CVE-2023-32835
CVE-2023-32836
CVE-2023-32837
CVE-2023-20702
CVE-2023-33031
CVE-2023-33055
CVE-2023-33059
CVE-2023-33074
CVE-2023-21671
CVE-2023-22388
CVE-2023-28574
CVE-2023-33045
CVE-2023-24852
CVE-2023-28545
CVE-2023-28556
CVE-2023-33047
CVE-2023-33048
CVE-2023-33056
CVE-2023-33061
Recently, CERT-In has issued a new “high severity” warning for Android users. The government body has mentioned that “multiple vulnerabilities have been reported in Android which could be exploited by an attacker to obtain sensitive information, gain elevated privileges and cause denial of service on the targeted system”.
For those unaware, CERT-In is a government body responsible for addressing and managing cybersecurity threats, has flagged these vulnerabilities as high-risk and is urging immediate action.
Why these vulnerabilities exist
Android is susceptible to vulnerabilities stemming from deficiencies in the Framework, System, Google Play system updates, Kernel LTS, Arm components, MediaTek components, Qualcomm components, and Qualcomm closed-source components.
Exploiting these vulnerabilities successfully may empower attackers to acquire sensitive information, escalate privileges, and induce denial of service on the targeted system.
Android versions affected
According to the report, the new vulnerabilities have been found in Android 11, Android 12, Android 12L, Android 13 and even the latest version — Android 14.
What users can do about it
CERT-In has mentioned that users need to apply the latest updates to their devices to overcome these vulnerabilities.
In simple words, users are required to check for the latest updates, especially Android security updates, for their devices and install them if available without fail.
For this, head to Settings → Software update and check for the updates.
List of vulnerabilities found
CVE-2023-40106
CVE-2023-40107
CVE-2023-40109
CVE-2023-40110
CVE-2023-40111
CVE-2023-40114
CVE-2023-40105
CVE-2023-40124
CVE-2023-40113
CVE-2023-40100
CVE-2023-40115
CVE-2023-40104
CVE-2023-40112
CVE-2023-21103
CVE-2023-21111
CVE-2023-28469
CVE-2023-32832
CVE-2023-32834
CVE-2023-32835
CVE-2023-32836
CVE-2023-32837
CVE-2023-20702
CVE-2023-33031
CVE-2023-33055
CVE-2023-33059
CVE-2023-33074
CVE-2023-21671
CVE-2023-22388
CVE-2023-28574
CVE-2023-33045
CVE-2023-24852
CVE-2023-28545
CVE-2023-28556
CVE-2023-33047
CVE-2023-33048
CVE-2023-33056
CVE-2023-33061