Google has announced the release of an emergency security update for Android, two of which are actively used by attackers. This is stated in the company's monthly report.
Special attention is paid to the vulnerability of the CVE-2025-38352 zero day, which allows the privilege escalation on Android core. It was first reported in July 2025 during the attacks on Linux users, but now it has been confirmed to be operated on Android. The second critical vulnerability, CVE-2025-48543, affects the Android Runtime component and also opens the ability to escalate access rights.
According to Google, Android 13-16 devices running on the operating system are at risk. Users are strongly recommended to install updates as soon as possible. It is also noted that some vulnerabilities affect Android 12 and earlier versions of smartphones. Google advises to stop the use of such devices due to the lack of security support.
BLEEPING COMPUTER magazine explains that CVE-2025-38352 was not classified at first as actively operated, but the situation has changed in recent months. Experts note that the growth of attacks confirms the need for quick updates to Android ecosystem.
Translation of: Euromedia24.com
