CYBERSIXT Signal Over Noise
securityonline.info 6/2/2026, 2:32:14 AM · external

Google patches Android zero‑day bug in Qualcomm, MediaTek chips

Google patches Android zero‑day bug in Qualcomm, MediaTek chips
Incident Open incident page

Drupal SQL Injection Exploit: Critical Flaw Exploited in the Wild with Public PoC

The page reports on two critical vulnerabilities actively exploited today: CVE-2022-0492, related to improper authentication in the Linux Kernel, and CVE-2025-48595, an integer overflow vulnerability in the Android Framework. Access to the detailed vulnerability report requires support from the reader, encouraging contributions via platforms like PayPal and…

First seen 2026-06-02T02:32:14.106Z · Last seen 2026-06-03T08:32:53.347Z

CVE-2025-48595 CVE-2026-0059 CVE-2022-0492
CyberSIXT Evidence Panel
Primary Source source.android.com
CVE Intel
CVE-2025-48595 - NVD Not in KEV 8.4 HIGH Patch Unknown
CISA KEV Not in KEV
Patch Patch Status Unknown

A critical Android zero-day flaw has been identified, prompting Google to issue a significant security patch. This update addresses vulnerabilities including CVE-2025-48595, a notable memory management error that can be exploited for code execution. The June 2026 security bulletin resolved 113 vulnerabilities, including 18 critical flaws enabling device takeover, affecting components from Qualcomm, MediaTek, and Unisoc, requiring no user interaction to exploit.

Users are urged to update their devices to patch levels dated June 5, 2026, or later. Ensuring patch hygiene is essential for defending against mobile threats.

View Primary Source Via securityonline.info

Article by CyberSIXT

Timeline Coverage

Swipe to explore timeline