Google has Starting patches For 62 vulnerabilities, two of which said they were used in the wild.
Two vulnerabilities with high speed are below –
- Cve-2024-53150 .
- Cve-2024-53197 (CVSS assessment: 7.8) – lack of escalation of privileges in USB core core component
“The most difficult of these issues is the critical safety vulnerability in the systemic components, which can lead to a distant escalation of privileges without additional privileges,” Google said in his monthly security newsletter in April 2025. “User interaction is not needed for operation.”
The technical giant also acknowledged that both deficiencies may have got into a “limited, purposeful operation”.
It is worth noting that the CVE-2024-53197 is introduced into the Linux kernel and was fixed last year, as well as the CVE-2024-53104 and CVE-2024-502. Say all three vulnerabilities on Amnesty International were chained together Solved in the Serbian youth activist Android in December 2024.
While Cve-2024-53104 was address Google in February 2025, Cve-2014-50302 was send Last month. With the last update, all three vulnerabilities were fixed, effectively connecting the way of operation.
Currently, there is detailed data on how the CVE-2024-53150 is used in real attacks, who and who may have been sent to these attacks. Android devices are recommended to apply updates as and when released by their original Android (OEMS) manufacturers.
