Google fixes one actively exploited Android zero-day, 124 flaws
Google said the fixes include 18 critical flaws and a zero-day that could let attackers gain remote privileges without user interaction.
- On Monday, Google released June 2026 Android security patches addressing 124 vulnerabilities, including one zero-day flaw confirmed to be under "limited, targeted exploitation."
- The most severe issue is a critical Framework vulnerability that Google added "could lead to remote escalation of privilege with no additional execution privileges needed." "User interaction is not needed for exploitation," the company confirmed.
- Across System, Framework, and Qualcomm closed-source components, Google fixed 18 critical vulnerabilities that attackers can abuse to trigger denial-of-service conditions or elevate privileges on unpatched devices.
- Two patch levels—2026-06-01 and 2026-06-05—were issued on Monday; while Google Pixel devices receive updates immediately, other vendors often require time to test specific hardware configurations.
- Last month, Google overhauled its vulnerability rewards programs, offering bounties of up to $1.5 million for Android exploits, and the company encourages all users to update to the latest Android version where possible.
17 Articles
17 Articles
You Should Install the June Android Security Patch ASAP
Google's June Android security patch isn't one to miss. The company may roll out a security update once a month, but this latest version is quite the update: As reported by BleepingComputer, the patch contains fixes for 124 security flaws. That in and of itself makes this a substantial update, but the reason to install it with haste comes down to one particular fix.One of the 124 vulnerabilities, tracked as CVE-2025-48595, is an escalation of pr…
Google has corrected over a hundred vulnerabilities present on Android, including a zero-day that there are indications of active exploitation, with the June security patch. ...
Google has just released its monthly Android Security Bulletin. On the program, 124 fixed flaws, including a vulnerability of the Framework already exploited in targeted attacks.
Coverage Details
Bias Distribution
- 75% of the sources are Center
Factuality
To view factuality data please Upgrade to Premium








