CVE-2024-32908<\/td> | A-314822767 *<\/a><\/td> | EoP<\/td> | Critical<\/td> | LDFW<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n The company addressed multiple information disclosure flaws impacting GsmSs, ACPM, and Trusty and multiple DoS issues in the modem.<\/p>\n\n\n\n In April, Google addressed 28 vulnerabilities in Android and 25 flaws in Pixel devices. Two issues fixed by the IT giant, tracked as CVE-2024-29745 and CVE-2024-29748<\/a>, were actively exploited in the wild.<\/p>\n\n\n\n CVE-2024-29745 is a High severity Information disclosure issue in the bootloader, while CVE-2024-29748 is a High severity elevation of privilege issues in the Pixel Firmware.<\/gwmw><\/p>\n\n\n\n \u201cThere are indications that the following may be under limited, targeted exploitation.\u201d reads <\/a>the advisory.<\/p>\n\n\n\n The company did not provide details about the attacks, but in the past, such kinds of bugs were actively exploited by nation-state actors or\u00a0commercial spyware vendors<\/a>.<\/gwmw><\/gwmw><\/gwmw><\/p>\n\n\n\n Pierluigi\u00a0Paganini<\/strong><\/a><\/gwmw><\/p>\n\n\n\n Follow me on Twitter: @securityaffairs<\/strong><\/a> and Facebook<\/strong><\/a> and Mastodon<\/strong><\/a><\/p>\n\n\n\n (<\/strong>SecurityAffairs<\/strong><\/a>\u00a0\u2013<\/strong>\u00a0hacking, Google Pixel)<\/strong><\/gwmw><\/p>\n","protected":false},"excerpt":{"rendered":" Google is warning of a security vulnerability impacting its Pixel Firmware that has been actively exploited in the wild as a zero-day. Google warned\u00a0of an elevation of privilege vulnerability, tracked as CVE-2024-32896, in the Pixel Firmware, which has been exploited in the wild as a zero-day. “There are indications that CVE-2024-32896 may be under limited, […]<\/p>\n","protected":false},"author":1,"featured_media":121107,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[3323,5,55],"tags":[4112,9508,9506,10918,687,841,1533],"class_list":["post-164500","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-breaking-news","category-hacking","category-security","tag-hacking","tag-hacking-news","tag-information-security-news","tag-it-information-security","tag-pierluigi-paganini","tag-security-affairs","tag-security-news"],"yoast_head":"\n杭州江阴科强工业胶带有限公司 |