There are indications that CVE-2024-36971 may be under limited, targeted exploitation, the tech giant noted in its monthly Android security bulletin for August 2024.
Clement Lecigne of Google's Threat Analysis Group (TAG) reported the flaw, suggesting it may be exploited by commercial spyware vendors to infiltrate Android devices in narrowly targeted attacks.
The August patch resolves a total of 47 flaws, including those in components associated with Arm, Imagination Technologies, MediaTek, and Qualcomm.
Google previously addressed security flaws (CVE-2024-29745 and CVE-2024-29748) exploited by forensic companies whereas patches for CVE-2024-32896 impact Pixel devices and Android platform.
[
Collection
]
[
|
...
]