Google's December update fixes a "critical" vulnerability: remote execution of arbitrary code without user interaction 04/04 Update SLTechnology News&Howtos

Google's December update fixes a "critical" vulnerability: remote execution of arbitrary code without user interaction

2025-04-04 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > IT Information >

Shulou(Shulou.com)12/24 Report--

CTOnews.com December 5 news, Google recently released the December Android version update, a total of 85 vulnerabilities fixed, of which the tracking number CVE-2023-40088 vulnerability marked as "critical," affecting Android versions 11, 12, 12L, 13, 14.

CTOnews.com learned from the report that the vulnerability exists in an Android system component that can be executed remotely without user interaction and without additional permissions.

Google did not disclose details of the vulnerability for security reasons, only to suggest that attackers could exploit the vulnerability to remotely execute arbitrary code.

Google's update this month also fixes 84 security vulnerabilities, including CVE-2023-40077, CVE-2023-40076 and CVE-2023-45866, which exist in Android frameworks and system components and are "critical" level escalation vulnerabilities.

In addition, there is a "critical" vulnerability with tracking number CVE-2022-40507, which exists in Qualcomm's closed-source components.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.

*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.