[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"focus:google-june-2026-android-update-patches-124-flaws-one-actively-exploited-mpziczy5":3},{"item":4},{"id":5,"title":6,"slug":7,"summary":8,"severity":9,"category":10,"cve_ids":11,"affected_products":13,"action_required":19,"article_ids":20,"ioc_summary":22,"source_urls":23,"status":25,"expires_at":26,"created_at":27,"updated_at":28,"articles":29},"871fc802-d5f8-4aae-a42d-194449a011f1","Google June 2026 Android Update Patches 124 Flaws, One Actively Exploited","google-june-2026-android-update-patches-124-flaws-one-actively-exploited-mpziczy5","Google patched 124 Android vulnerabilities in June 2026, including CVE-2025-48595, a high-severity privilege escalation flaw (CVSS 8.4) in the Framework component that is actively exploited in the wild. The vulnerability affects Android 14, 15, 16, and 16 QPR2, allowing code execution through integer overflow without user interaction. This is a weaponized flaw with limited but confirmed real-world exploitation.","critical","advisory",[12],"CVE-2025-48595",[14,15,16,17,18],"Google","Android","Qualcomm","MediaTek","Imagination Technologies","Immediately identify and patch all Android 14, 15, 16, and 16 QPR2 devices to the June 2026-06-05 patch level or later. Prioritize devices in high-risk roles (executive, engineering, infrastructure access). Monitor endpoint logs for suspicious Framework component activity and unexpected privilege escalations.",[21],"2dea1573-9bdd-4c4f-9584-bb0c6a381a5e",null,[24],"https:\u002F\u002Fthehackernews.com\u002F2026\u002F06\u002Fgoogle-june-2026-android-update-patches.html","active","2026-06-06T13:05:18.882+00:00","2026-06-04T13:05:24.28064+00:00","2026-06-04T13:06:06.665791+00:00",[30],{"id":21,"title":6,"url":24}]