Google warns of a vulnerability in Pixel phones that is actively being exploited. The bug is a privilege escalation and is rated 'High'. It is not clear how the bug is being exploited, but a fix has now been announced.
Google fixed the bug in the June update for Pixel devices. That update includes a fix for CVE-2024-32896. According to Google, this is a bug in the Pixel's firmware that makes it possible to obtain higher permissions on the device. The escalation of privileges is rated High, but there are no details about how that bug works.
It is also striking that Google says that the bug may be exploited. “There are indications that CVE-2024-32896 may be subject to limited, targeted exploitation,” the company wrote. As is customary for the company with zero days, Google does not provide any further details about this.
43 other vulnerabilities will be fixed in the June update. In 7 cases these are bugs that have a 'Critical' security rating.
Leave a Reply
You must be logged in to post a comment.