Two serious vulnerabilities in Qualcomm’s Snapdragon system-on-a-chip (SoC) WLAN firmware could be leveraged to compromise the modem and the Android kernel over the air. The tests were made on Google Pixel 2 and 3 but any unpatched phone running one of the two SoCs is vulnerable. Exploitation is currently possible only on Android phones that have not been patched with the latest security updates that rolled out today. Qualcomm on June 3 published a security bulletin to original equipment manufacturers (OEMs) to allow them to prepare the Android update.
Source: https://www.bleepingcomputer.com/news/security/qualpwn-bugs-in-snapdragon-soc-can-attack-android-over-the-air/