Google fixes one actively exploited Android zero-day, 124 flaws

Google released an Android update patching 124 vulnerabilities, including CVE-2025-48595, a high-severity privilege escalation flaw in the Android Framework. The zero-day has been exploited in targeted attacks, with indications of limited, targeted use by local attackers on Android 14 and later. Google's March 2025 Security Bulletin notes the vulnerability may be under targeted exploitation, though no specific attack details are available. SecurityWeek reports commercial spyware vendors have become dominant in exploiting such flaws. Both sources confirm the zero-day affects Android Framework and is among 124 patched issues, with one source citing 124 and the other 123 vulnerabilities.