Google released an update to address several vulnerabilities affecting Android OS devices. Successful exploitation of the most severe vulnerabilities could allow a threat actor to remotely execute code within the context of an application. If the affected application possesses elevated privileges, a threat actor could then install programs or view, modify, or delete data. These vulnerabilities pose a high risk to organizations and home users alike. The NJCCIC recommends users and administrators review the Android Security Bulletin for more information and a full list of patched vulnerabilities, and update Android devices to the most recent, patched version.