Original Issue Date: August 19, 2021
Severity Rating: HIGH
Software Affected
Google Android Versions prior to 8.1, 9, 10, 11
Overview
Multiple vulnerabilities have been reported in Google Android which could be exploited by an attacker to execute arbitrary code, obtain sensitive information or gain elevated privileges on the targeted system.
Description
These vulnerabilities exist in Google Android due to flaws in the Framework Component, Media Framework, System Component, Kernel Component, MediaTek components, Widevine DRM, Qualcomm components and Qualcomm closed-source components.
These vulnerabilities could enable a local malicious application to bypass operating system protections that isolate application data from other applications. It allows a local attacker to gain access to additional permissions using a specially crafted transmission.
Successful exploitation of these vulnerabilities could allow the attacker to execute arbitrary code to disclose potentially sensitive information and gain elevated privileges on the targeted system.
Solution
Apply appropriate software updates as provided by various device manufactures.
https://source.android.com/security/bulletin/2021-08-01
Disclaimer
The information provided herein is on “as is” basis, without warranty of any kind.