{"id":122345,"date":"2024-11-05T13:22:15","date_gmt":"2024-11-05T06:22:15","guid":{"rendered":"https:\/\/hotvideos24.online\/?p=122345"},"modified":"2024-11-05T13:22:15","modified_gmt":"2024-11-05T06:22:15","slug":"google-warns-of-actively-exploited-cve-2024-43093-vulnerability-in-android-system","status":"publish","type":"post","link":"https:\/\/hotvideos24.online\/?p=122345","title":{"rendered":"Google Warns of Actively Exploited CVE-2024-43093 Vulnerability in Android System"},"content":{"rendered":"<p> <script async src=\"https:\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-3711241968723425\"\r\n     crossorigin=\"anonymous\"><\/script>\r\n<ins class=\"adsbygoogle\"\r\n     style=\"display:block\"\r\n     data-ad-format=\"fluid\"\r\n     data-ad-layout-key=\"-fb+5w+4e-db+86\"\r\n     data-ad-client=\"ca-pub-3711241968723425\"\r\n     data-ad-slot=\"7910942971\"><\/ins>\r\n<script>\r\n     (adsbygoogle = window.adsbygoogle || []).push({});\r\n<\/script><br \/>\n<\/p>\n<div>\n<p><span class=\"p-author\"><i class=\"icon-font icon-calendar\">\ue802<\/i><span class=\"author\">Nov 05, 2024<\/span><i class=\"icon-font icon-user\">\ue804<\/i><span class=\"author\">Ravie Lakshmanan<\/span><\/span><span class=\"p-tags\">Mobile Security \/ Vulnerability<\/span><\/p>\n<\/div>\n<div id=\"articlebody\">\n<div class=\"separator\" style=\"clear: both;\"><a href=\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEjpwHx5f5jZwY_NdO2Kil1Zb1iRu1GfyNqDQhGm9XFi1-LEBKh4G8M6hu9WSwWOct0vlU3QaGvT4H_6j2r1D9Th3f6uMpcAOIvRb_7K5v73PrzyuPbirhgkwzTdndayhCxl-H9vYnTXtr6iwYhVgTrvJu3iS-nKlVeRjXYTZzudQwNtN0P7wUhGLsVHMlsE\/s728-rw-e365\/android.png\" style=\"clear: left; display: block; float: left;  text-align: center;\"><img decoding=\"async\" src=\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEjpwHx5f5jZwY_NdO2Kil1Zb1iRu1GfyNqDQhGm9XFi1-LEBKh4G8M6hu9WSwWOct0vlU3QaGvT4H_6j2r1D9Th3f6uMpcAOIvRb_7K5v73PrzyuPbirhgkwzTdndayhCxl-H9vYnTXtr6iwYhVgTrvJu3iS-nKlVeRjXYTZzudQwNtN0P7wUhGLsVHMlsE\/s728-rw-e365\/android.png\" alt=\"Vulnerability in Android System\" border=\"0\" data-original-height=\"380\" data-original-width=\"728\" title=\"Vulnerability in Android System\"\/><\/a><\/div>\n<p>Google has warned that a security flaw impacting its Android operating system has come under active exploitation in the wild.<\/p>\n<p>The vulnerability, tracked as CVE-2024-43093, has been described as a privilege escalation flaw in the Android Framework component that could result in unauthorized access to &#8220;Android\/data,&#8221; &#8220;Android\/obb,&#8221; and &#8220;Android\/sandbox&#8221; directories and its sub-directories, according to a <a href=\"https:\/\/android.googlesource.com\/platform\/frameworks\/base\/+\/67d6e08322019f7ed8e3f80bd6cd16f8bcb809ed\" rel=\"noopener\" target=\"_blank\">code commit message<\/a>.<\/p>\n<p>There are currently no details about how the vulnerability is being weaponized in real-world attacks, but Google <a href=\"https:\/\/source.android.com\/docs\/security\/bulletin\/2024-11-01\" rel=\"noopener\" target=\"_blank\">acknowledged<\/a> in its monthly bulletin that there are indications it &#8220;may be under limited, targeted exploitation.&#8221;<\/p>\n<p>The tech giant has also flagged CVE-2024-43047, a now-patched security bug in Qualcomm chipsets, as having been actively exploited. A use-after-free vulnerability in the Digital Signal Processor (DSP) Service, successful exploitation could lead to memory corruption.<\/p>\n<div class=\"dog_two clear\"><center class=\"cf\"><a href=\"https:\/\/thehackernews.uk\/cis-nov\" rel=\"nofollow noopener sponsored\" target=\"_blank\" title=\"Cybersecurity\"><img loading=\"lazy\" decoding=\"async\" class=\"lazyload\" alt=\"Cybersecurity\" src=\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEiAxSbAOIwY5p0wWv5znF6Nj42k-fIocSD-CC_fgf7B4WQKPZbJCilURnF5BAgXpuwEEjcBU2BeRdKaag8fw81D37T0OJG7Arl683j5xIhSrEv-88wJKyGgPtRSH1A-5Sz6Oa97Zg8gS0UhfS1E-6PfJwRE2o2yqakqaiVyW8RXxs4Pgxi3c7MA2z3jASGT\/s728-e100\/cis-d.png\" width=\"727\" height=\"90\"\/><\/a><\/center><\/div>\n<p>Last month, the chipmaker <a href=\"https:\/\/thehackernews.com\/2024\/10\/qualcomm-urges-oems-to-patch-critical.html\" rel=\"noopener\" target=\"_blank\">credited<\/a> Google Project Zero researchers Seth Jenkins and Conghui Wang for reporting the flaw, and Amnesty International Security Lab for confirming the in-the-wild activity.<\/p>\n<p>The advisory offers no details on the exploit activity targeting the flaw or when it might have started, although it&#8217;s possible that it may have been leveraged as part of highly targeted spyware attacks aimed at civil society members.<\/p>\n<p>It&#8217;s also currently not known if both the security vulnerabilities were fashioned together as an exploit chain to elevate privileges and achieve code execution.<\/p>\n<p>CVE-2024-43093 is the second actively exploited Android Framework flaw after <a href=\"https:\/\/thehackernews.com\/2024\/09\/google-confirms-cve-2024-32896.html\" rel=\"noopener\" target=\"_blank\">CVE-2024-32896<\/a>, which was patched by Google back in June and September 2024. While it was originally resolved only for Pixel devices, the company later confirmed that the flaw impacts the broader Android ecosystem.<\/p>\n<p><\/p>\n<div class=\"cf note-b\">Found this article interesting?  Follow us on <a href=\"https:\/\/twitter.com\/thehackersnews\" rel=\"noopener\" target=\"_blank\">Twitter <i class=\"icon-font icon-twitter\">\uf099<\/i><\/a> and <a href=\"https:\/\/www.linkedin.com\/company\/thehackernews\/\" rel=\"noopener\" target=\"_blank\">LinkedIn<\/a> to read more exclusive content we post.<\/div>\n<\/div>\n<p><script async src=\"\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><br \/>\n<br \/><script async src=\"https:\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-3711241968723425\"\r\n     crossorigin=\"anonymous\"><\/script>\r\n<ins class=\"adsbygoogle\"\r\n     style=\"display:block\"\r\n     data-ad-format=\"fluid\"\r\n     data-ad-layout-key=\"-fb+5w+4e-db+86\"\r\n     data-ad-client=\"ca-pub-3711241968723425\"\r\n     data-ad-slot=\"7910942971\"><\/ins>\r\n<script>\r\n     (adsbygoogle = window.adsbygoogle || []).push({});\r\n<\/script><br \/>\n<br \/><div data-type=\"_mgwidget\" data-widget-id=\"1660802\">\r\n<\/div>\r\n<script>(function(w,q){w[q]=w[q]||[];w[q].push([\"_mgc.load\"])})(window,\"_mgq\");\r\n<\/script>\r\n<br \/>\n<br \/><a href=\"https:\/\/thehackernews.com\/2024\/11\/google-warns-of-actively-exploited-cve.html\">Source link <\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\ue802Nov 05, 2024\ue804Ravie LakshmananMobile Security \/ Vulnerability Google has warned that a security flaw impacting its Android operating system has come under active exploitation in the wild. The vulnerability, tracked &hellip; <a href=\"https:\/\/hotvideos24.online\/?p=122345\" class=\"more-link\">Read More<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[8630],"tags":[],"class_list":["post-122345","post","type-post","status-publish","format-standard","hentry","category-technology","entry"],"_links":{"self":[{"href":"https:\/\/hotvideos24.online\/index.php?rest_route=\/wp\/v2\/posts\/122345","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/hotvideos24.online\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/hotvideos24.online\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/hotvideos24.online\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/hotvideos24.online\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=122345"}],"version-history":[{"count":0,"href":"https:\/\/hotvideos24.online\/index.php?rest_route=\/wp\/v2\/posts\/122345\/revisions"}],"wp:attachment":[{"href":"https:\/\/hotvideos24.online\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=122345"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/hotvideos24.online\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=122345"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/hotvideos24.online\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=122345"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}