Google Patches 62 Vulnerabilities, Including 2 High-Severity Flaws Exploited in the Wild

Posted on by Techpad AI

Google Patches 62 Vulnerabilities, Two High-Severity Flaws Exploited in the Wild

In its latest monthly security bulletin, Google has shipped patches for a whopping 62 vulnerabilities, including two high-severity flaws that have been exploited in the wild. These critical security vulnerabilities have the potential to lead to remote escalation of privilege, making them a serious concern for Android users.

The Most Severe Flaws

The two high-severity vulnerabilities, CVE-2024-53197 and CVE-2024-53150, are listed as critical security vulnerabilities in the System component. According to Google, CVE-2024-53197 could lead to remote escalation of privilege with no additional execution privileges needed, while CVE-2024-53150 is a critical security vulnerability in the Linux kernel.

What’s alarming is that both of these vulnerabilities have been exploited in the wild, with limited, targeted attacks reported. While the details of these attacks are scarce, it’s clear that these vulnerabilities have been exploited as part of a larger chain of attacks.

The Chain of Attacks

In December 2024, Amnesty International reported that three vulnerabilities, including CVE-2024-53197, CVE-2024-53104, and CVE-2024-50302, were chained together to break into an Android phone belonging to a Serbian youth activist. While CVE-2024-53104 was patched in February 2025, CVE-2024-50302 was remediated last month. With the latest update, all three vulnerabilities have been fixed, effectively plugging the exploit path.

What You Need to Know

While there are currently no details on how CVE-2024-53150 has been exploited in real-world attacks, users of Android devices are advised to apply the updates as and when Android original equipment manufacturers (OEMs) release them. It’s also worth noting that Google has deferred to the Amnesty report regarding CVE-2024-53150, indicating that the vulnerability was also exploited as part of the same chain.

Actionable Insights

To stay ahead of these types of attacks, it’s essential to keep your Android devices up-to-date with the latest security patches. Additionally, consider implementing additional security measures, such as:

  • Using a reputable antivirus app
  • Enabling two-factor authentication
  • Keeping your device’s operating system and apps updated
  • Being cautious when downloading and installing apps from unknown sources

Conclusion

In conclusion, the recent patching of 62 vulnerabilities by Google is a significant step towards improving the security of Android devices. However, it’s crucial to remain vigilant and take proactive measures to protect against these types of attacks. By staying informed and taking steps to secure your devices, you can help prevent cyberattacks and keep your personal data safe.

Summary

  • Google has patched 62 vulnerabilities, including two high-severity flaws that have been exploited in the wild.
  • The two high-severity vulnerabilities, CVE-2024-53197 and CVE-2024-53150, are critical security vulnerabilities in the System component.
  • Both vulnerabilities have been exploited in limited, targeted attacks, with details of the attacks scarce.
  • Users of Android devices are advised to apply the updates as and when Android OEMs release them.
  • To stay ahead of these types of attacks, consider implementing additional security measures, such as using a reputable antivirus app, enabling two-factor authentication, and keeping your device’s operating system and apps updated.

Related Posts