As part of its monthly roll out of patches for the Android platform, Google this week released fixes for 50 security flaws, including two critical flaws that could enable attackers to remotely execute malicious code on vulnerable devices. One of the critical vulnerabilities, tracked as CVE-2019-2176, affects Android 8.0, 8.1 and 9, while the other, tracked as CVE-2019-2108, impacts devices running Android 10.
Google warned that “these vulnerabilities could be exploited through multiple methods such as email, web browsing, and MMS when processing media files. Depending on the privileges associated with the application, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.”
Read more: Android’s September 2019 Patches Fix Nearly 50 Vulnerabilities