A high-severity vulnerability exists in Google Play Core Library, which is utilized by various popular applications like Google Chrome, Facebook and Instagram. The flaw, which ranks 8.8 out of 10 on the CVSS v3 scale, making it high severity, was previously disclosed in late August. Google patched the flaw on April 6, but researchers warned that the patch still needs to be pushed out by developers for several popular applications and potentially still impacts hundreds of millions of Android users. Some apps, such as social app Viber, travel app Booking, business app Cisco Teams, dating apps Grindr, OKCupid and Bumble, among others, have rolled out patches.
Source: https://threatpost.com/google-play-apps-remain-vulnerable-to-high-severity-flaw/161785/