Security News > 2025 > February > Google Patches 47 Android Security Flaws, Including Actively Exploited CVE-2024-53104
2025-02-04 04:51
Google has shipped patches to address 47 security flaws in its Android operating system, including one it said has come under active exploitation in the wild. The vulnerability in question is CVE-2024-53104 (CVSS score: 7.8), which has been described as a case of privilege escalation in a kernel component known as the USB Video Class (UVC) driver. Successful exploitation of the flaw could lead
News URL
https://thehackernews.com/2025/02/google-patches-47-android-security.html
Related news
- Update ASAP: Google Fixes Android Flaw (CVE-2025-27363) Exploited by Attackers (source)
- Google adds Android auto-reboot to block forensic data extractions (source)
- Android Improves Its Security (source)
- Google Reports 75 Zero-Days Exploited in 2024 — 44% Targeted Enterprise Security Products (source)
- Google fixes actively exploited FreeType flaw on Android (source)
- Actively exploited FreeType flaw fixed in Android (CVE-2025-27363) (source)
- Google Rolls Out On-Device AI Protections to Detect Scams in Chrome and Android (source)
- Android 16 expands 'Advanced Protection' with device-level security (source)
- Google’s Advanced Protection Now on Android (source)
- Google strengthens secure enterprise access from BYOD Android devices (source)
Related Vulnerability
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-12-02 | CVE-2024-53104 | Out-of-bounds Write vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format This can lead to out of bounds writes since frames of this type were not taken into account when calculating the size of the frames buffer in uvc_parse_streaming. | 7.8 |