{"id":140,"date":"2024-11-06T03:46:06","date_gmt":"2024-11-06T03:46:06","guid":{"rendered":"https:\/\/www.batteryone.co\/blog\/?p=140"},"modified":"2024-11-06T03:46:06","modified_gmt":"2024-11-06T03:46:06","slug":"google-fixes-two-android-vulnerability-used-in-targeted-attacks","status":"publish","type":"post","link":"https:\/\/www.batteryone.co\/blog\/archives\/140","title":{"rendered":"Google fixes two Android vulnerability used in targeted attacks"},"content":{"rendered":"\n<p>Google fixed two actively exploited Android zero-day flaws as part of its November security updates, addressing a total of 51 vulnerabilities: CVE-2024-43047, a flaw affecting Qualcomm chipsets, and CVE-2024-43093, a vulnerability in the Google Play framework.<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"574\" src=\"https:\/\/www.batteryone.co\/blog\/wp-content\/uploads\/2024\/11\/1106-2-1-1024x574.jpg\" alt=\"\" class=\"wp-image-142\" srcset=\"https:\/\/www.batteryone.co\/blog\/wp-content\/uploads\/2024\/11\/1106-2-1-1024x574.jpg 1024w, https:\/\/www.batteryone.co\/blog\/wp-content\/uploads\/2024\/11\/1106-2-1-300x168.jpg 300w, https:\/\/www.batteryone.co\/blog\/wp-content\/uploads\/2024\/11\/1106-2-1-768x431.jpg 768w, https:\/\/www.batteryone.co\/blog\/wp-content\/uploads\/2024\/11\/1106-2-1-1536x861.jpg 1536w, https:\/\/www.batteryone.co\/blog\/wp-content\/uploads\/2024\/11\/1106-2-1-1200x673.jpg 1200w, https:\/\/www.batteryone.co\/blog\/wp-content\/uploads\/2024\/11\/1106-2-1.jpg 1600w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p>&#8220;There are indications that the following may be under limited, targeted exploitation,&#8221; says Google&#8217;s advisory.<\/p>\n\n\n\n<p>Qualcomm patched CVE-2024-43047 \u2013 a use-after-free vulnerability in the Digital Signal Processor (DSP) service that could be exploited to escalate privileges on targeted devices \u2013 in October 2024, and urged original equipment manufacturers (OEMs) to deploy the patches as soon as possible.<\/p>\n\n\n\n<p>CVE-2024-43093 is also a high-severity elevation of privilege flaw,that allows privilege escalation and has been fixed by restricting access to \u201cAndroid\/data,\u201d \u201cAndroid\/obb,\u201d and \u201cAndroid\/sandbox\u201d directories and their sub-directories. This time impacting the Android Framework component and Google Play system updates, specifically in the Documents UI.<\/p>\n\n\n\n<p>While Google did not share any details on how the vulnerabilities were exploited, as researchers at Amnesty International discovered CVE-2024-43047, it could indicate that the flaw was used in targeted spyware attacks.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Propagating fixes in the Android ecosystem<\/h2>\n\n\n\n<p>Google issues two patch levels each month, in this case, November 1 (2024-11-01 Patch Level) and November 5 (2024-11-05 Patch Level).<\/p>\n\n\n\n<p>The first level addresses core Android vulnerabilities, with 17 issues this time, while the second patch level encompasses those plus vendor-specific fixes (Qualcomm, MediaTek, etc.), counting an additional 34 fixes this month.<\/p>\n\n\n\n<p>To apply the latest update, head to<strong>Settings<\/strong>&gt;<strong>System<\/strong>&gt;<strong>Software updates<\/strong>&gt;<strong>System update.<\/strong>Alternatively, go to<strong>Settings<\/strong>&gt;<strong>Security &amp; privacy<\/strong>&gt;<strong>System &amp; updates<\/strong>&gt;<strong>Security update<\/strong>. A restart will be required to apply the update.<\/p>\n\n\n\n<p><strong>Android 11<\/strong><strong>and older<\/strong>are no longer supported but may receive security updates to critical issues for actively exploited flaws through Google Play system updates, though that&#8217;s not guaranteed.<\/p>\n\n\n\n<p>The best course of action for devices still running those older releases should be either to replace them with newer models or use a third-party Android distribution that incorporates the latest security fixes.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Google fixed two actively exploited Android zero-day flaws as part of its November security updates, addressing a total of 51 vulnerabilities: CVE-2024-43047, a flaw affecting Qualcomm chipsets, and CVE-2024-43093, a vulnerability in the Google Play framework. &#8220;There are indications that the following may be under limited, targeted exploitation,&#8221; says Google&#8217;s advisory. Qualcomm patched CVE-2024-43047 \u2013 [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[41,22],"class_list":["post-140","post","type-post","status-publish","format-standard","hentry","category-news","tag-android","tag-google"],"_links":{"self":[{"href":"https:\/\/www.batteryone.co\/blog\/wp-json\/wp\/v2\/posts\/140","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.batteryone.co\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.batteryone.co\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.batteryone.co\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.batteryone.co\/blog\/wp-json\/wp\/v2\/comments?post=140"}],"version-history":[{"count":1,"href":"https:\/\/www.batteryone.co\/blog\/wp-json\/wp\/v2\/posts\/140\/revisions"}],"predecessor-version":[{"id":143,"href":"https:\/\/www.batteryone.co\/blog\/wp-json\/wp\/v2\/posts\/140\/revisions\/143"}],"wp:attachment":[{"href":"https:\/\/www.batteryone.co\/blog\/wp-json\/wp\/v2\/media?parent=140"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.batteryone.co\/blog\/wp-json\/wp\/v2\/categories?post=140"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.batteryone.co\/blog\/wp-json\/wp\/v2\/tags?post=140"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}