Google修補安卓兩個零時差漏洞
支付動態 · 2024-11-06

Google週一發布11月份安卓例行更新,值得留意的是,其中有2個漏洞CVE-2024-43047、CVE-2024-43093,該公司指出可能已被用於實際攻擊

11月4日Google發布本月份安卓作業系統的例行更新,當中總共修補51個漏洞,值得留意的是,其中有2個漏洞,疑似已出現局部、針對的漏洞利用情形。

這些漏洞分別為CVE-2024-43047、CVE-2024-43093,Google皆列為高風險層級,分別影響高通元件,以及安卓框架元件,Google Play系統更新元件。

其中,CVE-2024-43047最早是高通在10月公布,影響數位訊號處理器(Digital Signal Processor,DSP)服務,為記憶體釋放後再進行濫用(Use After Free,UAF)的弱點,CVSS風險評為7.8。

另一個漏洞CVE-2024-43093涉及權限提升,影響12至15版安卓作業系統,但特別的是,該漏洞不僅出在作業系統框架,也存在於Google Play系統更新模組當中的Documents UI元件。

Popular articles
New Jersey July Gambling Revenue Hits $606M, Sweeps Casinos Banned
Regulation
Super PAC Raises $48 Million: Sports Betting Forces Ramp Up Political Push
Regulation
Vietnam's tightening online gaming policy creates new market opportunities
Southeast Asia
Kazakhstan plans to penalise online casino promotions
Regulation
British gambling levy rates confirmed for each vertical
Regulation
That’s a Wrap: AffPapa Conference Madrid 2026 Highlights
Online Game
Vietnam’s Controlled Gaming Shift Gains Ground, But Domestic Demand Still Lags
Southeast Asia
Global Game Connect (GGC) 2027 Officially Opens Sponsorship & Exhibition Opportunities in Sri Lanka!
HUIDU Focus
Full House at GAT Expo Cartagena 2026 Academic Agenda
Online Game
What’s on the SBC Summit Conference Agenda in 2026?
Marketing
Indiana online casino bill stalls in House committee
Regulation
1spin4win grows its Latin American presence by partnering with Fortuna Juegos
Online Game
Are you ready to maximize your earnings? Try ProPush.me Constructor!
Marketing
Online gambling, crypto pose ongoing money laundering risks in Philippines, analyst says
Southeast Asia
PropellerAds Shared a New iGaming Case Study: 97,674 Installs and 12,701 Deposits in 3 Months
Marketing
Home
Game
Cooperation
Find
My