What the June Android Security Update Fixes
The June Android security update is a monthly software release from Google that fixes security vulnerabilities in Android devices, closing known loopholes that attackers can exploit and improving the overall protection of user data, apps, and system components across supported Android versions. In this cycle, Google has shipped patches for 124 documented security vulnerabilities affecting various layers of the operating system, from the core Framework and System components through to the kernel and third-party chipsets. These Android security update bundles are delivered under two patch levels, 2026-06-01 and 2026-06-05, with the latter including all previous fixes. Together they address multiple critical and high-severity issues, including remote and local privilege escalation flaws that could allow malicious apps or local adversaries to gain broader control over a device than they should. Users should see these updates appear via their device’s standard system update mechanism.
CVE-2025-48595: Actively Exploited Android 14, 15 and 16 Vulnerability
The most urgent issue in this Android security update is CVE-2025-48595, a high-severity Framework vulnerability with a CVSS score of 8.4. It affects devices running Android 14, 15, 16 and 16 QPR2 and is described as a privilege escalation flaw that can be triggered locally without any user interaction. According to Google, there are signs this Android 14 15 16 vulnerability is already under “limited, targeted exploitation,” which means some real-world attacks are using it. CVE.org notes that “in multiple locations, there is a possible way to achieve code execution due to an integer overflow,” which can lead to local escalation of privilege. The U.S. Cybersecurity and Infrastructure Security Agency has added CVE-2025-48595 to its Known Exploited Vulnerabilities catalog and ordered affected agencies to remediate it within days, underlining its urgency.
Other High-Risk Flaws and Affected Components
Beyond CVE-2025-48595, the June bulletin includes many other critical and high-severity issues. In the Framework and System components, several vulnerabilities could allow local attackers or malicious apps to gain elevated privileges with no additional execution rights. Google lists multiple critical System flaws, including issues tracked as CVE-2026-0043, CVE-2026-0097, CVE-2026-21352, CVE-2026-21353 and others, all addressed by the 2026-06-01 patch level. The Android security update also covers Google Play System Updates and, at the 2026-06-05 patch level, kernel and third-party chipset components from Imagination Technologies, MediaTek, Qualcomm and Unisoc. Further critical bugs are fixed in Qualcomm closed-source components, such as CVE-2025-47392, CVE-2026-25276 and CVE-2026-25277. Together, these corrections reduce the overall attack surface and chance of successful privilege escalation flaws on supported devices.
What Users Should Do Now
Owners of phones and tablets running Android 14, 15 or 16 should treat this Android security update as a priority, especially because CVE-2025-48595 is confirmed as an Android 14 15 16 vulnerability already exploited in the wild. Update paths differ by manufacturer, but the goal is to reach the 2026-06-01 or, preferably, 2026-06-05 security patch level, which includes all 124 fixes. Install any available system update promptly, then verify the security patch level in your device settings. Where possible, enable automatic updates for both system and Google Play System Updates to shorten exposure windows to future flaws. Until your device receives the patch, reduce risk by avoiding sideloaded apps, removing unneeded applications and limiting permissions for existing apps, particularly those that request extensive access. Updating immediately is the most effective way to protect against the active privilege escalation flaw and related threats.
