Google has released its month-to-month Android Safety Bulletin for March 2025 to handle a complete of 44 vulnerabilities, together with two that it stated have come underneath lively exploitation within the wild.
The 2 high-severity vulnerabilities are listed under –
- CVE-2024-43093 – A privilege escalation flaw within the Framework part that might lead to unauthorized entry to “Android/information,” “Android/obb,” and “Android/sandbox” directories, and their respective sub-directories.
- CVE-2024-50302 – A privilege escalation flaw within the HID USB part of the Linux kernel that might result in a leak of uninitialized kernel reminiscence to an area attacker by means of specifically crafted HID studies.
It is price noting that CVE-2024-43093 was previously flagged by Google in its safety advisory for November 2024 as actively exploited within the wild. It is not clear what prompted the tech large to concern the alert a second time.
The Hacker Information has reached out to Google for additional remark, and we are going to replace the story if we hear again.
CVE-2024-50302, however, is among the three vulnerabilities that have been chained right into a zero-day exploit devised by Cellebrite to interrupt right into a Serbian youth activist’s Android telephone in December 2024.
The exploit concerned the usage of CVE-2024-53104, CVE-2024-53197, and CVE-2024-50302 to realize elevated privileges and certain deploy an Android adware dubbed NoviSpy.
All three vulnerabilities reside within the Linux kernel and have been patched late final 12 months. CVE-2024-53104 was addressed by Google in Android final month.
In its advisory, Google acknowledged that each CVE-2024-43093 and CVE-2024-50302 have come underneath “restricted, focused exploitation.”
The Mountain View-based firm has launched two safety patch ranges, 2025-03-01 and 2025-03-05, in order to offer flexibility to Android companions to handle a portion of vulnerabilities which are comparable throughout all Android units extra rapidly.
