TR-21-0502 (Android Güvenlik Zafiyeti)

Genel Bilgi

Android'in bazı versiyonlarında Bilgi İfşası, Yetki Yükseltme ve Uzaktan Kod Çalıştırma zafiyeti tespit edilmiştir.

Etki

Mevcut zafiyetler nedeniyle hedef sistemler kontrol altına alınabilir. CVE kodları şöyledir:

CVE-2021-0478, CVE-2021-0504, CVE-2021-0505, CVE-2021-0506, CVE-2021-0507, CVE-2021-0508, CVE-2021-0509, CVE-2021-0510, CVE-2021-0511, CVE-2021-0512, CVE-2021-0513, CVE-2021-0516, CVE-2021-0517, CVE-2021-0520, CVE-2021-0521, CVE-2021-0522, CVE-2021-0523, CVE-2021-0525, CVE-2021-0526, CVE-2021-0527, CVE-2021-0528, CVE-2021-0529, CVE-2021-0530, CVE-2021-0531, CVE-2021-0532 ve CVE-2021-0533

Çözüm

Ulusal Siber Olaylara Müdahale Merkezi (USOM) kullanıcı ve sistem yöneticilerine Google tarafından yayınlanan güncellemeleri incelemelerini ve gerekli güncellemeleri yapmalarını tavsiye etmektedir.

Kaynaklar

https://sensorstechforum.com/tag/android-security/

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-0478

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-0504

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-0505

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-0506

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-0507

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-0508

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-0509

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-0510

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-0511

2021-06-22