The Indian Computer Emergency Response Team (CERT) of the IT Ministry has issued a new alert for Android operating system users. This high alert is for users of Android 10, Android 11, Android 12 and Android 12L. According to the advisory, several Vulnerabilities have been described in the operating system that can be used by anyone to obtain sensitive information.
The advisory further states that these vulnerabilities exist due to flaws in the framework, system components, media provider components, kernel components, MediaTek components, Qualcomm components, Qualcomm closed source components and systems in Android OS. According to the advisory, successful exploitation of these vulnerabilities could allow an attacker to obtain sensitive information.
Google has already acknowledged these vulnerabilities in the Android OS and released a security patch earlier this month. According to the recent Android Security Bulletin the 1st May 2022 or later security patch lwell addresses all these issues. According to the company, the most serious of these issues is a high security bug in the framework component.
Many issues on Android have been made more difficult to exploit by enhancements in newer versions of the Android platform. This is the reason why Google keeps asking all users to update to the latest version of Android where possible.