Computer Emergency Response Team of India (CERT-In) has cautioned of vulnerabilities and has issued a security alert for android users which affects Android operating systems including version 11, 12.5.12l, and 13.
As per the security alert for android users by CERT-In experts, the vulnerabilities pose serious concerns as these could make devices easy targets for malicious attackers to execute arbitrary codes, access sensitive data, and could also cause a denial of service (DoS) condition on affected devices.
This CERT-In security alert for android users note reads, “These vulnerabilities exist in Android OS due to flaws in Framework, System, Google Play system updates, Arm components, MediaTek components, Unisoc components, Qualcomm components and Qualcomm closed-source components”
The agency said that these vulnerabilities could lead to exploitation of devices by malicious attackers to execute arbitrary codes, access sensitive data, gain elevated privileges, and could also cause a denial of service (DoS) condition on affected devices. The issue is concerning as a large number of devices in India are Android operated.
CERT-In also specifically raised concerns of two vulnerabilities, namely CVE-2023-4863 and CVE-2023-4211, which are being exploited by the attackers. CERT-In has advised Android users to take prompt measures to secure their devices. According to the agency, the users could safeguard their devices by following timely updates and applying latest security patches.
Do this to ensure your android device’s security
Always check for latest updates and install them timely as delay in installation of these patches could make your device vulnerable for exploitation. Also, stay informed about updates related to security from the device manufacturer and follow their advisory to keep your device secure.
How to get updates on your android version
The user can find their devices’ Android version number, security update level, and Google Play system level in device ‘Settings’. All notifications regarding updates are available for users in the ‘Settings’ section.
PNN & Agencies