| Multiple vulnerabilities have been discovered in Google Android OS, the most severe of which could allow for remote code execution. Android is an operating system developed by Google for mobile devices, including, but not limited to, smartphones, tablets, and watches. Successful exploitation of the most severe of these vulnerabilities could allow for remote code execution. Depending on the privileges associated with the exploited component, an attacker could then install programs; view, change, or delete data; or create new accounts with full rights. |
| Threat Intelligence There are reports of these vulnerabilities being exploited in the wild. (CVE-2023-4863, CVE-2023-4211) |
| Systems Affected |
| Android OS patch levels prior to 2023-10-05 |
| Risk Government: – Large and medium government entities: High – Small government entities: Medium |
| Businesses: – Large and medium business entities: High – Small business entities: Medium |
| Home Users: Low |
| Technical Summary Multiple vulnerabilities have been discovered in Google Android OS, the most severe of which could allow for remote code execution in the context of the affected component. |
| Recommendations |
| Apply the stable channel update provided by Google to vulnerable systems immediately after appropriate testing. Restrict execution of code to a virtual environment on or in transit to an endpoint system. Use capabilities to detect and block conditions that may lead to or be indicative of a software exploit occurring. |
| References Google: https://source.android.com/docs/security/bulletin/2023-10-01 |
| Qualcomm: https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2023-bulletin.html |