Google has discovered a vulnerability affecting all Android phones. The zero-day vulnerability, first found in the Pixel line models, allows attackers to exploit privilege escalation to compromise sensitive user data.
The flaw is cataloged as CVE-2024-32896 in the Common Vulnerabilities and Exposures (CVE) document and is rated as CVSS (risk level) 7.8. According to the database description, Logical flaw in code allows privilege escalation based on user interaction.
In general, a Attacker can perform actions on the mobile phone that only highly privileged software can perform. Moreover, since it was a zero-day flaw, it was vulnerable until the moment it was discovered.
CVE-2024-32896 was initially found on Pixel phones, prompting the United States government to order a security suite to be installed before July 4. But now Google is warning that the flaw is present on all Android devices.
Problem for Samsung
A Samsung has already released the July security patchThe package addresses four serious security issues found in the system, but does not resolve the issue reported by Google.
Then, Samsung phones exposed to CVE-2024-32896 – and maybe they’ll continue like this until next month.
In every situation, A violation requires an action on the user side to be triggeredTherefore, the most important recommendation is to pay attention to the applications installed on your mobile phone and avoid installing programs from unknown sources.
Source: Tec Mundo
I am a passionate and hardworking journalist with an eye for detail. I specialize in the field of news reporting, and have been writing for Gadget Onus, a renowned online news site, since 2019. As the author of their Hot News section, I’m proud to be at the forefront of today’s headlines and current affairs.
