Android Devices Under Cyber Attacks: No Solution Found for Affecting Over a Billion Phones According to Google
In a recent announcement, Google has issued a critical warning for all Android users, highlighting the discovery of several serious security vulnerabilities that could potentially compromise the security of millions of devices.
Two of these vulnerabilities, CVE-2025-38352 and CVE-2025-48543, have already been exploited in the wild, making them particularly concerning. According to Zimperium, a significant percentage of devices are not upgradeable, which could exacerbate the problem of outdated devices.
CVE-2025-48543 affects the Android Kernel, while CVE-2025-48539 targets the Android Runtime. Both vulnerabilities could lead to local escalation of privilege with no additional execution privileges needed, making them potentially dangerous. CVE-2025-48539 is an Android System issue, adding to the concerns.
The other three critical fixes (CVE-2025-21450, CVE-2025-21483, and CVE-2025-27034) relate to Qualcomm chipsets and the release of manufacturer fixes.
Google will quickly fix all eligible Pixel devices as part of this month's security update. However, many Android devices are running versions of Android that can't be updated, and upwards of a billion Android phones are no longer on any form of support contract. Owners of older devices are urged to upgrade their phones if they can't update their software.
The usual deployment schedule for updates will occur over the coming weeks. In the meantime, devices will need to update their own monthly bulletins and firmware releases. Other OEMs will receive code patches within the next 48 hours to fix two critically alarming security vulnerabilities. These patches target SAP systems, specifically updates for SAP Netweaver (including RMI-P4 and AS Java components) and SAP S/4HANA installations. These patches address highly severe issues such as arbitrary code execution and system takeover risks disclosed in September 2025.
It's important to note that user interaction is not needed for the exploitation of CVE-2025-48543 and CVE-2025-48539, making them even more dangerous. A significant number of these devices are compromised or infected, underscoring the urgency of the situation.
In conclusion, Android users are encouraged to stay vigilant and keep their devices updated to protect against these critical vulnerabilities. If your device is not upgradeable, consider upgrading to a newer model to ensure your device's security.
