#Qualcomm – Xynik

Google fixes two Android zero-days used in targeted attacks

November 5, 2024 by Xynik

November 5, 2024 at 09:34AM Google’s November security updates fixed two actively exploited Android zero-day vulnerabilities, CVE-2024-43047 and CVE-2024-43093, among 51 flaws. The high-severity issues affect Qualcomm components and Android Framework, potentially linked to spyware attacks. Users are urged to update their devices for improved security, especially those running outdated versions. ### Meeting Takeaways: November … Read more

Qualcomm urges device makers to push patches after ‘targeted’ exploitation

October 8, 2024 by Xynik

October 8, 2024 at 05:35PM Qualcomm has released 20 patches for chipsets’ firmware, addressing critical vulnerabilities, including exploited flaws in DSP software. Notably, CVE-2024-43047 carries a CVSS severity rating of 7.8, exploited by nation-state attackers or surveillanceware vendors. The update is urged for affected devices, with specific impacts on Snapdragon models and FastConnect Wi-Fi/Bluetooth kit. … Read more

Qualcomm Urges OEMs to Patch Critical DSP and WLAN Flaws Amid Active Exploits

October 8, 2024 by Xynik

October 8, 2024 at 12:42AM Qualcomm has released security updates addressing around 20 vulnerabilities in proprietary and open-source components. Among them, CVE-2024-43047 is a high-severity user-after-free bug in the DSP Service, under active exploitation. CVE-2024-33066, a critical flaw in WLAN Resource Manager, has also been patched. The updates aim to mitigate potential targeted exploitation and … Read more

Qualcomm patches high-severity zero-day exploited in attacks

October 7, 2024 by Xynik

October 7, 2024 at 02:35PM Qualcomm has released security patches for a zero-day vulnerability in the Digital Signal Processor (DSP) service, caused by a use-after-free weakness. The vulnerability, reported by Google Project Zero and Amnesty International Security Lab, has been exploited in targeted attacks. Qualcomm urges immediate update deployment and has also fixed another severe … Read more

Android’s January 2024 Security Update Patches 58 Vulnerabilities

January 10, 2024 by Xynik

January 10, 2024 at 07:09AM In January 2024, Google released Android security updates, addressing a total of 58 vulnerabilities across the platform and Pixel devices. It included high-severity issues in Framework and System components. The update also addressed vulnerabilities in third-party components. Additionally, Pixel devices received fixes for three medium-severity vulnerabilities. Users are advised to … Read more

New 5Ghoul attack impacts 5G phones with Qualcomm, MediaTek chips

December 8, 2023 by Xynik

December 8, 2023 at 10:25AM A new set of 5G modem vulnerabilities, collectively known as “5Ghoul,” impact 710 5G smartphone models from Google partners and Apple, as well as routers and USB modems. Discovered by researchers, these vulnerabilities can lead to disruptions and network downgrades, posing a risk to security. Qualcomm and MediaTek have released … Read more