Google released 46 fixes for Android in its August security patch batch, including one for a Linux kernel flaw in the mobile operating system that could lead to remote code execution (RCE).

Channel	Publish Date	Thumbnail & View Count	Actions
MONEY TALKS WIRELESS	2023-02-22 13:00:31	1,826,943 Views	View on YouTube View Channel

He got virus on his phone 😱Fix it with a simple trick ✨#shorts #android #samsung #apple #iphone #fy

From the sounds of things, this hole has already been discovered and exploited by spyware sleuths.

This bug, tracked as CVE-2024-36971, is an unexploited vulnerability in the networking stack that received a high CVSS rating of 7.8 out of 10. Successful exploitation could lead to "remote code execution with necessary system execution privileges," the web giant said, which means an attacker can gain full control of the device, possibly from across the network or the Internet.

And while Google never provides much detail in its monthly patch bulletins about how Android flaws are being exploited in the wild, it notes that "there are indications that CVE-2024-36971 may be under limited, targeted exploitation."