Make sure to update your Android device to the latest security patch as soon as possible. There are three critical bugs that are being fixed (and four more that are not so critical).

The details: The security flaw that’s getting the most attention is known as MediaTek-su by Android developers and CVE-2020-00069 by Google. The bug itself allows attackers to gain root access to your Android device without having to unlock the bootloader, Sophos’ Naked Security blog reports.

MediaTek itself says it patched the vulnerability in May 2019, but Android developer group XDA notes that there are millions of Android devices in circulation that have not yet received the fix from the company, and may never do so.

Even more: Other serious bugs in the update include bugs in the media framework, which handles camera, audio, and video. These could give remote attackers access to your device’s media codecs. Other bugs include vulnerabilities in what’s called “privilege elevation,” which could give a user who isn’t you higher access to the operating system than they should have.