Google has pushed out a new update for Android devices that fixes more than 30 security flaws that would expose mobile users to a range of malicious attacks. The most important bug that was fixed is tracked as CVE-20121-0519 and was a bug in the media framework that could lead to the elevation of privileges on Android 8.1 and 9 devices or information disclosure on Android 10 and 11. This bug could enable a local malicious application to bypass operating system protections that isolate application data from other applications. Three more of the issues fixed were high severity privilege escalation flaws. Another 24 vulnerabilities affected Kernel components, MediaTek components, Widevine DRM, Qualcomm components, and Qualcomm closed-source components. Successful exploitation of the most severe of these vulnerabilities could allow for remote code execution within the context of a privileged process. Depending on the privileges associated with this application, an attacker could then install programs, view, change, or delete data, or create new accounts with full user rights.
When evaluating a Managed Detection & Response (MDR) service there are 5 critical components that