Google Patches 120 Android Vulnerabilities, 2 Zero-Days Fixed

Android security updates zero-day vulnerabilities critical Android flaws Google security patches mobile security
Alan V Gutnov
Alan V Gutnov

Director of Strategy

 
December 2, 2025 2 min read
Google Patches 120 Android Vulnerabilities, 2 Zero-Days Fixed

TL;DR

Google's latest Android security updates tackle critical vulnerabilities and actively exploited zero-day flaws. These patches, including the December 2025 release, address defects in the framework, system, and kernel, with sources available for partners. Staying updated is crucial for mobile security against evolving cyber threats.

Android Security Updates Address Critical Vulnerabilities

Google has released several security updates for Android, addressing a range of vulnerabilities, including actively exploited zero-day flaws. These updates are crucial for maintaining the security and integrity of Android devices.

December 2025 Security Update

Google's December 2025 security update addresses a total of 107 defects. This update includes fixes for two zero-day vulnerabilities: CVE-2025-48633 and CVE-2025-48572. These high-severity defects affect the Android framework, potentially allowing attackers to access information and escalate privileges.

The most severe vulnerability in this update, CVE-2025-48631, is a critical defect in the framework that could lead to remote denial of service without requiring additional execution privileges. The update includes two patch levels: 2025-12-01 and 2025-12-05, allowing Android partners to address common vulnerabilities on different devices.

The primary security update addresses 37 vulnerabilities in the framework and 14 in the system. Additionally, the second patch addresses nine kernel vulnerabilities, including four critical ones, along with fixes for components from Arm, Imagination Technologies, MediaTek, Unisoc, and Qualcomm. Source code for these fixes will be released to the Android Open Source Project repository.

September 2025 Security Update

In September 2025, Google addressed 120 Android vulnerabilities, including two zero-day vulnerabilities that were actively exploited.

The two zero-day vulnerabilities patched in the September update are:

  • CVE-2025-38352: A privilege escalation flaw in the Linux Kernel component.
  • CVE-2025-48543: A privilege escalation flaw in the Android Runtime component.

Google noted that these vulnerabilities could lead to local escalation of privilege without requiring user interaction and indicated "limited, targeted exploitation" Android Security Alert: Google Patches 120 Flaws, Including Two Zero-Days Under Attack. The update also included fixes for remote code execution, privilege escalation, information disclosure, and denial-of-service vulnerabilities affecting Framework and System components. To provide flexibility, Google released two security patch levels: 2025-09-01 and 2025-09-05 shipped.

Importance of Timely Updates

Given the increasing sophistication of cyber threats, organizations must prioritize mobile security. The Pradeo Mobile Threat Defense (MTD) solution offers continuous protection by detecting suspicious behaviors, blocking malicious applications, and providing visibility into device status.

Gopher Security specializes in AI-powered, post-quantum Zero-Trust cybersecurity architecture, providing a robust defense against evolving threats. Our platform converges networking and security across devices, apps, and environments, utilizing peer-to-peer encrypted tunnels and quantum-resistant cryptography to ensure comprehensive protection.

Staying Ahead of Cyber Threats with Gopher Security

The rise in Android vulnerabilities highlights the need for advanced security solutions. Gopher Security's platform offers a comprehensive approach to cybersecurity, ensuring that your organization remains one step ahead of cybercriminals.

Explore our services and contact us to learn how Gopher Security can protect your organization from advanced cyber threats.

Alan V Gutnov
Alan V Gutnov

Director of Strategy

 

MBA-credentialed cybersecurity expert specializing in Post-Quantum Cybersecurity solutions with proven capability to reduce attack surfaces by 90%.

Related News

Critical Azure Entra ID Vulnerability Allows Tenant-Wide Compromise
Windows Admin Center vulnerability

Critical Azure Entra ID Vulnerability Allows Tenant-Wide Compromise

Urgent: Two critical vulnerabilities in Windows Admin Center (CVE-2026-20965) and Azure Entra ID (CVE-2025-55241) could lead to tenant-wide compromise. Learn how to protect your systems now!

By Alan V Gutnov January 15, 2026 5 min read
common.read_full_article
Advanced Linux VoidLink Malware: Targeting Cloud and Container Environments
VoidLink malware

Advanced Linux VoidLink Malware: Targeting Cloud and Container Environments

Discover VoidLink, a sophisticated Linux malware framework targeting cloud environments. Learn its stealthy tactics, modular design, and how to protect your infrastructure. Read now!

By Edward Zhou January 14, 2026 6 min read
common.read_full_article
Critical Apache Struts XXE Injection Vulnerability CVE-2025-68493
Apache Struts XXE

Critical Apache Struts XXE Injection Vulnerability CVE-2025-68493

Critical Apache Struts XXE vulnerability (CVE-2025-68493) with CVSS 9.8! Discover its impact on AI/MLOps and learn mitigation strategies. Secure your systems now!

By Divyansh Ingle January 13, 2026 4 min read
common.read_full_article
Apple Urges iPhone Users to Update for Critical Security Fixes
Apple security update

Apple Urges iPhone Users to Update for Critical Security Fixes

Apple releases urgent security updates for iOS, iPadOS, and more to patch actively exploited zero-day flaws. Update now to protect your devices!

By Brandon Woo January 12, 2026 3 min read
common.read_full_article