Google's June 2026 Android security update addresses 124 vulnerabilities, including CVE-2025-48595, a high-severity privilege escalation flaw in the Framework component that is being actively exploited in the wild. The vulnerability, with a CVSS score of 8.4, requires no user interaction, making it particularly dangerous for enterprise Android deployments.
Google on Monday released patches for 124 security vulnerabilities impacting its Android operating system for the month of June 2026, including one high-severity flaw in the Framework component that has come under active exploitation. Tracked as CVE-2025-48595 (CVSS score: 8.4), the security flaw has been described as a case of privilege escalation without requiring any user interaction. The
Originally published at thehackernews.com
60-minute technical evaluation, no obligation. We'll map the ideas in this article to your environment.
