TR-21-0472 (Android Güvenlik Zafiyeti)

Genel Bilgi

Android'in bazı versiyonlarında Uzaktan Kod Çalıştırma, Bilgi İfşası ve Yetki Yükseltme zafiyeti tespit edilmiştir.

Etki

Mevcut zafiyetler nedeniyle hedef sistemler kontrol altına alınabilir. CVE kodları şöyledir:

CVE-2021-0494, CVE-2021-0474, CVE-2021-0475, CVE-2021-0476, CVE-2021-0477, CVE-2021-0480, CVE-2021-0481, CVE-2021-0482, CVE-2021-0484, CVE-2021-0485, CVE-2021-0487, CVE-2021-0489, CVE-2021-0490, CVE-2021-0491, CVE-2021-0492, CVE-2021-0493, CVE-2021-0495, CVE-2021-0496, CVE-2021-0497 ve CVE-2021-0498

Çözüm

Ulusal Siber Olaylara Müdahale Merkezi (USOM) kullanıcı ve sistem yöneticilerine Google tarafından yayınlanan güncellemeleri incelemelerini ve gerekli güncellemeleri yapmalarını tavsiye etmektedir.

Kaynaklar

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-0474

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-0475

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-0476

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-0477

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-0480

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-0481

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-0482

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-0484

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-0485

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-0487

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-0494

2021-06-14