{“lastseen”:”2025-09-03T22:34:14″,”description”:”Google has patched 111 vulnerabilities in Android, including two critical flaws, in its September 2025 Android Security Bulletin.\\n\\nWhile the last few months have been quite calm regarding the number of vulnerabilities, this month is a real whopper with 111, compared to 6 in August and none in July.\\n\\nThe September updates are available for Android 13, 14, 15, and 16. Android vendors are notified of all issues at least a month before publication, however, this doesn\u2019t always mean that the patches are available for all devices immediately.\\n\\nYou can find your device\u2019s Android version number, security update level, and Google Play system level in your Settings app. You\u2019ll get notifications when updates are available for you, but you can also check for them yourself.\\n\\nFor most phones it works like this: Under **About phone** or **About device** you can tap on **Software updates** to check if there are new updates available for your device, although there may be slight differences based on the brand, type, and Android version you’re on.\\n\\nIf your Android phone shows patch level 2025-09-05 or later then you can consider the issues as fixed.\\n\\nKeeping your device as up to date as possible protects you from known vulnerabilities and helps you to stay safe.\\n\\n## Technical information\\n\\nGoogle notes that:\\n\\n\\u003e \u201cthere are indications that the following may be under limited, targeted exploitation.\\n\\u003e \\n\\u003e CVE-2025-38352\\n\\u003e \\n\\u003e CVE-2025-48543\u201d\\n\\nBut it doesn’t provide any details about how and against whom these vulnerabilities were used. So, let\u2019s have a closer look at those two first.\\n\\nCVE-2025-38352 is a race condition vulnerability in the Linux kernel time subsystem, which may allow a local attacker to gain an elevation of privilege (EoP).\\n\\nA race condition vulnerability means that during a moment where different threads (processes or programs) use the same resource, but they are not synchronized, it creates a brief period during which an attacker could exploit the race window.\\n\\nIn this case the resource is the CPU time, the amount of time that a central processing unit (CPU) was used for processing instructions of a computer program or operating system.\\n\\nA \u201clocal attacker\u201d which can also be an installed app or shell could exploit this vulnerability to gain permissions it would normally not get or have.\\n\\nCVE-2025-48543 is a vulnerability in Android runtime. The Android Runtime (ART) is the system responsible for running applications on Android devices. Basically it translates instructions into machine code which the processor understands. The vulnerability could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.\\n\\nAnd then there is the vulnerability tracked as CVE-2025-48539. This critical vulnerability was found in the System component and could lead to remote (proximal\/adjacent) code execution with no additional execution privileges needed and no user interaction required.\\n\\nThe part where the description says remote (proximal\/adjacent) is a bit of a mystery, but our best guess is this means an attacker could compromise a device from a short distance, so it might be by means of Bluetooth, NFC, or Wi-Fi Direct.\\n\\nThis type of vulnerability always makes researchers nervous, because they could be \u201cwormable,\u201d meaning they can spread from one device to the next. And if that is true, they can spread like wildfire in crowded environments like concerts and conferences.\\n\\n* * *\\n\\n**We don\u2019t just report on phone security\u2014we provide it**\\n\\nCybersecurity risks should never spread beyond a headline. Keep threats off your mobile devices by downloading Malwarebytes for iOS, and Malwarebytes for Android today.”,”published”:”2025-09-03T21:24:02″,”modified”:”2025-09-03T21:24:02″,”type”:”malwarebytes”,”title”:”Update your Android! Google patches 111 vulnerabilities, 2 are critical”,”source”:””,”references”:””,”id”:”MALWAREBYTES:6F5BD5D64845FAC9531CEA915BD28D3A”,”bulletinFamily”:”blog”,”cwe”:null,”cvelist”:[“CVE-2025-38352″,”CVE-2025-48539″,”CVE-2025-48543″],”sourceData”:””,”sourceHref”:””,”cvss”:{“score”:7.4,”severity”:”HIGH”,”vector”:”CVSS:3.1\/AV:L\/AC:H\/PR:N\/UI:N\/S:U\/C:H\/I:H\/A:H”,”version”:”3.1″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:”https:\/\/www.malwarebytes.com\/blog\/news\/2025\/09\/update-your-android-google-patches-111-vulnerabilities-including-2-critical-flaws”,”category_name”:”News”,”post_link”:””,”product”:””,”version”:””,”vendor”:””,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"
{“lastseen”:”2025-09-03T22:34:14″,”description”:”Google has patched 111 vulnerabilities in Android, including two critical flaws, in its September 2025 Android Security Bulletin.\\n\\nWhile the last few months have been quite…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4],"tags":[6,8,29,12,15,115,13,7,11,5],"class_list":["post-15749","post","type-post","status-publish","format-standard","hentry","category-category_news","tag-cve","tag-cvss","tag-cvss-74","tag-exploit","tag-high","tag-malwarebytes","tag-news","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n