Google has issued its monthly Android security updates, addressing 46 security vulnerabilities, including a high-severity flaw (CVE-2025-27363) that has been exploited in the wild. This particular vulnerability could allow local code execution without any additional permissions required. Users are urged to update their devices to the latest Android version to mitigate potential risks.
Keypoints :
- Google’s latest security update for Android fixes 46 vulnerabilities.
- CVE-2025-27363 is a high-severity flaw that enables local code execution and has been exploited.
- This vulnerability is linked to the FreeType open-source font rendering library.
- The issue stems from an out-of-bounds write flaw when parsing specific font files.
- Users are encouraged to upgrade to the latest Android version to enhance security.
- The update also addresses other vulnerabilities related to privilege escalation and denial-of-service.
- Exploitation of vulnerabilities is becoming harder due to enhancements in newer Android versions.
Read More: https://thehackernews.com/2025/05/google-fixes-actively-exploited-android.html