The monthly security upgrades from Google for the Android operating system include remedies for 46 vulnerabilities. Three of the problems are probably being used in the wild actively. Google’s bulletin specifically mentions CVE-2023-26083, CVE-2021-29256, and CVE-2023-2136 and states, “There are indications that the following may be under limited, targeted exploitation.”
The Arm Mali GPU driver for Bifrost, Avalon, and Valhall chips contains a medium-severity memory leak vulnerability (CVE-2023-26083), which was exploited in a chain of exploits that sent malware to Samsung smartphones in December 2022. It was determined that the vulnerability was significant enough to warrant a CISA mandate that federal agencies patch it by April 2023.