Google discovered a dangerous zero day vulnerability on many Samsung Galaxy, Huawei, Xiaomi and even Pixel phones

Recently, a zero day flaw in Android was discovered by security researchers in the Google Project Zero team. This vulnerability affects many major phone companies including Huawei P20, Pixel 1 and Pixel 2, Xiaomi, Samsung with Galaxy S7, S8 and S9 . and most likely exploited by hackers.

According to the Android development team, if an attacker causes the target to install malicious apps or exploit them through a successful web browser, he will take complete control of the device.

Google's threat analysis team said NSO Group, an Israeli-based spyware company, may have sold or used the flaw.

This vulnerability has been exploited in practice, so the Android team only has 7 days to fix the bug before going public. The Google Project Zero team first revealed the bug to the Android team on September 27 and was made public on October 4.

Below is a list of devices affected by this vulnerability. However, the Project Zero team thinks that this list may still be incomplete.

Pixel 1 Huawei P20 Samsung Galaxy S7 Oppo A3 Pixel 1 XL Xiaomi Redmi 5A Samsung Galaxy S8 Moto Z3 Pixel 2 Xiaomi Redmi Note 5 Samsung Galaxy S9 Android Oreo smartphones of LG Pixel 2 XL Xiaomi A1

Currently, the Android team has confirmed this vulnerability and considers it a serious problem at a high level. Android partners have been announced, and a patch is available for Android Common Kernel. This patch will be available in the October update for Pixel 1 and 2 devices, and Pixel 3 and 3A devices are not affected.

1. Sim vulnerabilities threaten more than 1 billion phones globally