For Android, Google has released monthly security updates to fix a variety of bugs, including a zero-day bug that the company believes may have already been used in the wild.
The high-severity vulnerability, identified as CVE-2023-35674, is characterized as a case of privilege escalation affecting the Android Framework.
Without going into more detail, the company stated in its Android Security Bulletin for September 2023 that “There are indications that CVE-2023-35674 may be under limited, targeted exploitation.”
The update also fixes three other privilege escalation bugs in Framework. According to the search engine giant, the worst of these bugs “could lead to local escalation of privilege with no additional execution privileges needed” without user engagement read more Latest Android Patch Update Includes Fix for Newly Actively Exploited Flaw.
Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the latest threats, breaches, and solutions.