300/69 Thursday, June 4, 2026
Google has released the June 2026 Android Security Bulletin, addressing a total of 124 vulnerabilities. Among the most significant is CVE-2025-48595, a privilege escalation vulnerability with a CVSS score of 8.4 that has reportedly been exploited in the wild. Google stated that there are indications of “limited, targeted exploitation” of the vulnerability, suggesting it may have been used in highly selective attacks.
According to Google’s advisory, CVE-2025-48595 affects devices running Android 14, Android 15, Android 16, and Android 16 QPR2. The flaw is caused by an integer overflow vulnerability that could potentially lead to arbitrary code execution and privilege escalation on affected devices. An attacker may be able to leverage the vulnerability to gain elevated access to the system without requiring additional privileges. However, Google has not disclosed details regarding the threat actors involved, the number of affected users, or the specific attack methods observed in the exploitation campaigns.
In addition to CVE-2025-48595, Google addressed numerous other vulnerabilities within Android system components, including several flaws that could lead to privilege escalation. The security updates are divided into two patch levels: 2026-06-01 and 2026-06-05. The 2026-06-05 patch level includes all fixes from the earlier release and adds additional updates for the Linux kernel and third-party chipset components from vendors such as Qualcomm, MediaTek, Unisoc, and Imagination Technologies. Android users are strongly encouraged to install security updates as soon as they become available from their device manufacturers to reduce the risk of compromise.