Google warns of actively exploited flaw in Samsung mobile processors
Take action: If you are using Samsung series device, update it to the October 2024 patch as soon as it's available. Spyware companies that advertise themselves as "family or employee monitoring" are using the flaws to hack and spy on users. If you are using an old unsupported phone, plan to update to a new supported version.
Learn More
Google security researchers are warning that a high-severity vulnerability impacting Samsung’s mobile processors has been exploited in the wild. The advisory indicates that attackers were able to exploit this vulnerability in real-world attacks, likely related to spyware operations.
Tracked as CVE-2024-44068 (CVSS score 8.1), this flaw has been actively exploited in the wild. The vulnerability is described as a "use-after-free" issue, which could lead to privilege escalation, potentially enabling attackers to execute arbitrary code within privileged processes on vulnerable Android devices. This vulnerability has been combined with other flaws to form an exploit chain, enabling the execution of arbitrary code in privileged services, such as the “cameraserver” process.
Affected Samsung Exynos models are Exynos 9820, 9825, 980, 990, 850, and W920, which are used in older Samsung devices, including Galaxy smartphones and wearables.
Samsung October 2024 security update addresses the vulnerability in its Exynos mobile processors.
All users of affected devices are strongly advised to install the update immediately. Users of unsupported or older devices should consider upgrading to newer models to ensure comprehensive security protection
