Google fixes Android kernel zero-day exploited in attacks

Google has released the February 2025 Android security updates, addressing 48 vulnerabilities, notably a high-severity zero-day flaw in the Android kernel’s USB Video Class driver.

This vulnerability, identified as CVE-2024-53104, allows authenticated local attackers to escalate privileges by exploiting improper parsing of specific frame types within the driver. The flaw can lead to out-of-bounds writes, potentially resulting in arbitrary code execution or denial-of-service attacks.

 

Expert Analysis:
Once again, we witness a critical vulnerability lurking within the core of Android’s architecture, this time in the USB Video Class driver. The fact that such a flaw allows for privilege escalation underscores a recurring theme: the persistent oversight in scrutinizing foundational components. While Google’s prompt patching is commendable, the reliance on users to update their devices remains a weak link.

 

Read the full article here.

Google Android figure on digital background closeup. Google Android is the operating system for smartphones, tablet computers, e-books, game consoles, and other devices. Moscow, Russia - March 18, 2019

Stay informed with us!

You can subscribe to our monthly cybersecurity newsletter to receive updates about us and the industry

Blog

Check the latest updates on threats, stories, events and analysis.

Campaign Targets Syrian Arab Army Spyware Attack | ZENDATA

Spyware Campaign Targets Syrian Arab Army with Fake Android Messaging App

  • Military Cybersecurity, News
Chrome TLS Update 2025: Chunghwa Telecom Certificates

Chrome TLS Update 2025: Google to Distrust ChunGHWA Telecom Certificates

  • News
Massive TikTok User Data Leak: 428 Million Records Allegedly Sale

Threat actor claims TikTok breach with 428 million records for sale

  • News

More posts

Were you a victim of hackers? Have you experienced a data breach? Call us or write to us.
We know what to do.

+ 41 22 588 65 90 (24/7 hotline)
emergency@zendata.security

While we’re processing your request, there are some things you can do to prevent a disaster.

SELF-HELP GUIDE

Newsletter

Stay up to date with the latest threats, stories, events and analysis, sign up for our monthly cybersecurity newsletter.

Since 2011, we have been supporting businesses, governments, and educational organizations. We’ve partnered with international organisations and law enforcement to provide you with the fastest and most efficient threat response.

Offices

Geneva

Rte de Frontenex, 62Bis,

1207, Geneva

Switzerland

Bahrain

Office 1201,

Almoayyed TowerAI, Seef,

Bahrain

Abu Dhabi

Office 603, Centro Capital Center,

Abu Dhabi Exhibition Center,

Khaleej Al Arabi St, Abu Dhabi,

UAE

Dubai

Building Montana,

D84 Zaa’beel Street, Dubai,

UAE

Singapore

90 EU Tong Sen Street

#03-02B, Singapore, 059811

Singapore

Legal

Privacy Policy

Social Media

Downloads

Emergency self-help guide

DEFCON: Switzerland

© Copyright ZENDATA CYBERSECURITY