Rewterz Threat Advisory – Microsoft Windows Code Execution Vulnerability
May 19, 2021Rewterz Threat Alert – AZORult Malware – Active IOC’s
May 19, 2021Rewterz Threat Advisory – Microsoft Windows Code Execution Vulnerability
May 19, 2021Rewterz Threat Alert – AZORult Malware – Active IOC’s
May 19, 2021Severity
High
Analysis Summary
Four android security vulnerabilities (that were exploited in the wild) have been identified by Google’s Project Zero team. Security updates for the flaws were patched earlier this month. Attacks attempting to exploit these flaws were targeted and impacted a limited number of users.
“There are indications that CVE-2021-1905, CVE-2021-1906, CVE-2021-28663, and CVE-2021-28664 may be under limited, targeted exploitation,” a recently updated version of the May 2021 Android Security Bulletin reveals.
The four Android vulnerabilities impact Qualcomm GPU and Arm Mali GPU Driver components. To put things into perspective, more than 9% of all Android devices are still running Android 8.1 Oreo (released in December 2017), and roughly 19% Android Pie 9.0 (released in August 2018). These vulnerabilities are exploited in the wild.
The critical issues in the System component could be exploited by remote attackers using a specially crafted file to execute arbitrary code within the context of a privileged process.
Impact
Remote Code Execution
Affected Vendors
- ARM
- Qualcomm
Remediation
For updates, more information on affected products and android versions, and patches visit the website at https://source.android.com/security/bulletin/2021-05-01