× ![]()
Google has issued another warning for Android users regarding zero-day threats and multiple vulnerabilities.
Following the alert from Google about a serious zero-day threat, Samsung suddenly updated its August Security for millions of Galaxy users. This makes it critical for users to update their devices to protect data and sustain security.
“There are indications that CVE-2024-36971 may be under limited, targeted exploitation,” Google warned, confirming that a fix for an Android kernel vulnerability that “could lead to remote code execution with System execution privileges needed” is included in Android’s August security update.
Samsung provides details in its August security firmware update exactly after the Google warning. The updates also include the long-awaited fix for June’s so-called Pixel Zero Day. However, Samsung will organize all security updates and flagships from place to place and device by device, rather than all at once.
While Google said of the latest vulnerability that “source code patches will be released to the Android Open Source Project (AOSP) repository in the next 48 hours,” suggesting another Samsung delay, that’s not the case.
This will lead all eyes on iPhone users to maintain the security standard in the flagship market. Unfortunately, Samsung needs to focus on the threat issue.
In addition, Google takes control of Android, Pixel hardware, and Pixel software. This must ensure OEMs like Samsung update the security terms and measures timely. The U.S. government has previously included the Pixel zero-day in its Known Exploited Vulnerability Catalog to highlight the update caused. Under this catalog, CISA maintains the authoritative vulnerability management and updates schedules.
This will give rise to a serious cause for Android and Samsung to schedule security updates after Google’s zero-day threat warning.