Googleβs September 2025 Android update patches 84 vulnerabilities, including two actively exploited flaws CVE-2025-38352 and CVE-2025-48543. The update addresses critical issues affecting Android 13 to 16, with additional fixes for Qualcomm components and specific Samsung devices. #CVE202538352 #CVE202548543 #QualcommVulnerabilities
Keypoints
- Google released the September 2025 security update for Android devices.
- Two flaws, CVE-2025-38352 and CVE-2025-48543, are actively exploited in zero-day attacks.
- The CVE-2025-38352 flaw involves a race condition in the Linux kernel, risking crashes and privilege escalation.
- The CVE-2025-48543 flaw can allow malicious apps to bypass sandbox restrictions on Android Runtime.
- Updates also fix vulnerabilities in Qualcomm components and support Android versions 13 to 16.