Google fixes Android kernel zero-day exploited in attacks

Google has released the February 2025 Android security updates, addressing 48 vulnerabilities, notably a high-severity zero-day flaw in the Android kernel’s USB Video Class driver.

This vulnerability, identified as CVE-2024-53104, allows authenticated local attackers to escalate privileges by exploiting improper parsing of specific frame types within the driver. The flaw can lead to out-of-bounds writes, potentially resulting in arbitrary code execution or denial-of-service attacks.

 

Expert Analysis:
Once again, we witness a critical vulnerability lurking within the core of Android’s architecture, this time in the USB Video Class driver. The fact that such a flaw allows for privilege escalation underscores a recurring theme: the persistent oversight in scrutinizing foundational components. While Google’s prompt patching is commendable, the reliance on users to update their devices remains a weak link.

 

Read the full article here.

Google Android figure on digital background closeup. Google Android is the operating system for smartphones, tablet computers, e-books, game consoles, and other devices. Moscow, Russia - March 18, 2019

Stay informed with us!

You can subscribe to our monthly cybersecurity newsletter to receive updates about us and the industry

Blog

Check the latest updates on threats, stories, events and analysis.

Nigeria Touts Cyber Success While African Cybercrime Surges

  • News

Israeli Spyware Firm Paragon Linked to WhatsApp Zero-Click Attack

  • News

ZENDATA to the rescue of hacker victims – TDG

  • Article

More posts

Were you a victim of hackers? Have you experienced a data breach? Call us or write to us.
We know what to do.

+ 41 22 588 65 90 (24/7 hotline)
emergency@zendata.security

While we’re processing your request, there are some things you can do to prevent a disaster.

SELF-HELP GUIDE

Since 2011, we have been supporting businesses, governments, and educational organizations. We’ve partnered with international organisations and law enforcement to provide you with the fastest and most efficient threat response.

Stay up to date with the latest threats, stories, events and analysis, sign up for our monthly cybersecurity newsletter.

Offices

Geneva

Rte de Frontenex, 62Bis,

1207, Geneva

Switzerland

Bahrain

Office 1201,

Almoayyed TowerAI, Seef,

Bahrain

Abu Dhabi

Office 603, Centro Capital Center,

Abu Dhabi Exhibition Center,

Khaleej Al Arabi St, Abu Dhabi,

UAE

 

Dubai

Building Montana,

D84 Zaa’beel Street, Dubai,

UAE

Legal

Privacy Policy

Social Media

Downloads

Emergency self-help guide

DEFCON: Switzerland

© Copyright ZENDATA CYBERSECURITY