Due to the boss that additional safety devices like the application sandword, exploitation usually requires a lot of risks together to achieve higher rights. Mobile devices, including mobile browsers, mostly directed by commercial vendors (CSVs) selling their products to government and intelligence structures. These customers usually want to receive information from their cellphone views, can be remotely or physical access.
One example of a threatening chain that includes three risks opening Android’s Android phone for Student activist in the last year and the product established by Cellebrite, a digital digital company. One of the risks used in the Chain, CVE-2024-53104, affects Android Server Class (UVC) the Kernel driver and was ordained in February. Some two dangers, CVE-2024-53197 and CVE 2024-50302, are Proposed Linux Kernel, which is Android.
“While we are waiting for supporting government players to continue their history role as the best players of Zero, CSVs now offer important volume of zero days,” said Google GTig Researchers. “Although the total calculation and zero’s allotted CSVs is cut off from 2023 to 2024, more due to add effective safety practices, the number of 2024 is higher than 2022 years before.”
Source link