"Google Publishes Monthly Android Security Bulletin, Patches Critical Vulnerabilities"
Google Published its Android Security Bulletin for June on Monday, and it contains details of over 40 security vulnerabilities affecting Android devices and related patches. Google stated that the most severe of these issues was a critical security vulnerability in the system component that could lead to remote code execution [RCE] with no additional execution privileges needed. Tracked as CVE-2022-20127, the vulnerability could affect unpatched systems running Android versions 10, 11, 12, and 12L. Other RCE vulnerabilities are mentioned in the bulletin, which could affect the Framework, Media Framework, and Kernel of certain Android devices. In the document, Google also addressed vulnerabilities deriving from the hardware of certain manufacturers, including MediaTek and Qualcomm components and Motorola’s Unisoc chips. The June 1st security patch reportedly fixed the critical vulnerabilities mentioned above, alongside five security bugs in Framework, 13 in the system component, and 18 others across Kernel, MediaTek, Unisoc, and Qualcomm closed-source components.