Patchday: Attackers target Android smartphones
Important security updates have been released for Android 12, 12L, 13, 14 and 15. Attackers are already exploiting two vulnerabilities.
Security vulnerabilities threaten Android smartphones.
(Image: Bild erstellt mit KI in Bing Designer durch heise online / dmk)
Attackers are currently targeting Android smartphones and attacking devices. Security patches are available for selected devices. After successful attacks, unauthorized access to areas of the mobile operating system that are actually sealed off is possible.
Watch out for attacks!
Back in November last year, Google warned that attackers were exploiting a vulnerability in the framework (CVE-2024-43093 “high”). It is not clear from the current warning message why they are doing it again. The vulnerability affects the shouldHideDocument function in ExternalStorageProvider.java.
If attackers successfully exploit this, they can bypass access filters to view system directories. This can lead to the expansion of user rights. For attacks to work, however, victims must play along according to the description of the vulnerability. It is not yet known how such an attack could work in detail.
The second vulnerability attacked (CVE-2024-50302 “medium”) affects the kernel subcomponent HID. Unauthorized access to the kernel memory is possible at this point. The extent of the attacks is unclear. Google speaks of targeted attacks on a limited scale.
Further dangers
Several security vulnerabilities in the system are considered “critical” (e.g., CVE-2025-0074). Attackers can use these vulnerabilities to launch malicious code attacks. In addition, data can be leaked or attackers can crash software via a DoS attack.
Videos by heise
The Android developers claim to have solved the security problems in the patch levels 2025-03-01 and 2015-03-05. In addition to Google, manufacturers such as LG and Samsung also provide monthly updates for certain devices (see box).
(des)
