Critical Android Zero-Day Exploited: 124 Vulnerabilities Patched

Critical Android Zero-Day Exploited: 124 Vulnerabilities Patched

First seen 2 Jun 2026, 07:53 UTC Hkcertsource.android.comCybersecuritynewsGbhackersHeise.De+28 88% similarity 72.9

Article Content

Browse articles
ThreatCluster

Google has released security updates addressing 124 vulnerabilities in Android, including a critical zero-day flaw (CVE-2025-48595) that is actively exploited in targeted attacks. This vulnerability allows local attackers to escalate privileges without user interaction on devices running Android 14 or later. The updates also include fixes for other critical vulnerabilities in the Framework, System, and Qualcomm components. Users are urged to update their devices to the latest security patch levels (2026-06-01 or 2026-06-05) to mitigate risks. The vulnerabilities affect a wide range of Android devices, with Google Pixel devices receiving updates immediately. Third-party manufacturers may take longer to release patches. The ongoing exploitation of CVE-2025-48595 raises concerns about potential widespread impacts, especially given its critical nature.

Key Points: • Google patched 124 vulnerabilities in June 2026, including a critical zero-day (CVE-2025-48595). • CVE-2025-48595 allows local attackers to escalate privileges without user interaction. • Users are advised to update to the latest security patch levels to mitigate risks.

ThreatCluster AI

Timeline

2025-11-24
CVE-2025-65018 published
Vulnerability assigned a CVE identifier and published in the National Vulnerability Database.
MITRE
2025-11-24
CVE-2025-64720 published
Vulnerability assigned a CVE identifier and published in the National Vulnerability Database.
MITRE
2025-12-02
CVE-2025-48572 added to CISA KEV
CISA flagged the vulnerability as actively exploited in the wild and added it to the Known Exploited Vulnerabilities catalog.
CISA KEV
2025-12-02
CVE-2025-48633 added to CISA KEV
CISA flagged the vulnerability as actively exploited in the wild and added it to the Known Exploited Vulnerabilities catalog.
CISA KEV
2025-12-04
CVE-2025-40214 published
Vulnerability assigned a CVE identifier and published in the National Vulnerability Database.
MITRE
2026-03-02
CVE-2026-21385 published
Vulnerability assigned a CVE identifier and published in the National Vulnerability Database.
MITRE
2026-06-01
June 2026 Android Security Bulletin released
Google published the June security bulletin detailing 124 vulnerabilities, including CVE-2025-48595.
source.android.com
2026-06-01
CVE-2026-0043 published
Vulnerability assigned a CVE identifier and published in the National Vulnerability Database.
MITRE
2026-06-02
CVE-2025-48595 added to CISA KEV
CVE-2025-48595, a critical vulnerability, was added to the CISA Known Exploited Vulnerabilities list due to active exploitation.
Bleepingcomputer
2026-06-02
Multiple vulnerabilities reported
Reports indicate multiple vulnerabilities, including CVE-2025-48595, could lead to denial of service and privilege escalation.
Hkcert

Community

Browse all →