Android has long been haunted by security concerns and recently a vulnerability was uncovered which was found in the Android WebView component. This loophole affected a bulk of 939 million devices that do not run on the Android KitKat or the latest Android Lollipop.Google has now issued a statement on the security issues, claiming that it is not feasible to update the older devices. Also Read - OnePlus Nord open sale pushed to August 6, only 8GB and 12GB RAM variants will go on saleAlso Read - Google is bringing Windows apps to Chromebook
Google responded to the vulnerability and took a firm stand that they will not be updating the WebView in Jelly Bean. The company has essentially changed the modus operandi of the WebView component in Android KitKat and further. The newest version that opens the links on their own application native browser is based on the Chromium engine, which necessarily is the same as in Google Chrome. Also Read - Google Pixel 5 announced alongside Pixel 4a: All you need to know
On the contrary, the older versions of Android use a WebKit Engine an open source component that can be updated by hundreds of developers. Thus, Google has little control over the open source part of the engine. Furthermore, if Google releases an update, there is no saying if the OEMs will release it for the users of older Android devices.
Google was however quick to come up with a workaround that will almost eradicate the WebKit vulnerability. It suggests users set apps to access links in an external browser like Firefox or Chrome, which are updated on a timely basis for security fixes. This is the only workaround that will help you to browse and access content safely in older versions of the Android.