{"id":14641,"date":"2024-03-31T19:39:17","date_gmt":"2024-03-31T19:39:17","guid":{"rendered":"https:\/\/news.talkwithrattan.com\/index.php\/2024\/03\/31\/cert-in-warns-users-of-security-flaws-affecting-these-android-versions\/"},"modified":"2024-03-31T19:39:17","modified_gmt":"2024-03-31T19:39:17","slug":"cert-in-warns-users-of-security-flaws-affecting-these-android-versions","status":"publish","type":"post","link":"https:\/\/news.talkwithrattan.com\/index.php\/2024\/03\/31\/cert-in-warns-users-of-security-flaws-affecting-these-android-versions\/","title":{"rendered":"CERT-In Warns Users of Security Flaws Affecting These Android Versions"},"content":{"rendered":"
\"CERT-In<\/div>


\n<\/p>\n

\n

The Indian Computer Emergency Response Team (CERT-In<\/a>) has issued an advisory regarding several security flaws affecting smartphones running on recent versions of Android<\/a>. The cybersecurity agency has warned users about\u00a0vulnerabilities that were recently patched by Google and smartphone component makers like Qualcomm and MediaTek as part of the Android Security Bulletin for this month. Samsung has also issued patches for nine\u00a0Samsung Vulnerabilities and Exposures (SVE) that were privately disclosed and have moderate severity ratings, as part of the latest security update.<\/p>\n

In in advisory issued on Tuesday, CERT-In highlights multiple vulnerabilities detected across parts of the Android operating system, including the “Framework, System, AMLogic, Arm<\/a> components, MediaTek<\/a> components, Qualcomm<\/a> components & Qualcomm closed-source components”. The advisory has a “High” severity rating and states that the flaws affect Android 12 (and 12L), Android 13, and Android 14.<\/p>\n

According to the cybersecurity agency, Google<\/a> has patched vulnerabilities in its Android operating system that would allow an attacker to gain unauthorised access to private information on an affected device. The flaws could also be leveraged by the attacker to gain elevated privileges on the device and execute malicious code or start a denial of service (DoS) attack.<\/p>\n

Meanwhile, Google has shared detailed information<\/a> related to specific components that have been patched with the latest Android Security Bulletin \u2014 including fixes for bootloader vulnerabilities on devices with AMLogic components, flaws on Mali (Arm) components, and security issues affecting Wi-Fi and kernels on Qualcomm devices.<\/p>\n

Samsung<\/a> has announced<\/a> that its devices that receive the latest Security Maintenance Release (SMR) Mar-2024 Release 1 update will also be protected against nine\u00a0SVEs that affect the\u00a0Wi-Fi, AppLock, and other parts of the operating system as well as the\u00a0bootloader. The company also says that it has also issued fixes for some\u00a0SVE items that cannot currently be disclosed.<\/p>\n

CERT-In says that users should make sure that their smartphones are updated with the latest monthly security updates in order to make sure that these vulnerabilities have been patched. According to Google’s latest Android Security Bulletin, users whose smartphones have been updated to the\u00a02024-03-05 security patch level should be protected from these security flaws.\u00a0<\/p>\n