Google is actively fixing exploited 'privilege escalation' bug in Pixel phones
Google warns of a vulnerability in Pixel phones that is actively being exploited. The bug is a privilege escalation and is rated 'High'. It is not clear how the bug is being exploited, but a fix has now been announced.
Google fixed the bug in the June update for Pixel devices. That update contains a fix CVE-2024-32896. According to Google, this is a bug in the Pixel's firmware that makes it possible to obtain higher permissions on the device. The escalation of privileges is rated High, but there are no details on how that bug works.
It is also striking that Google says that the bug may be exploited. “There are indications that CVE-2024-32896 may be subject to limited, targeted exploitation,” the company wrote. As is customary for the company with zero days, Google does not provide any further details about this.
The June update fixes 43 more vulnerabilities. In 7 cases these are bugs that have a 'Critical' security rating.