—–BEGIN PGP SIGNED MESSAGE—–

Hash: SHA256

Multiple Vulnerabilities in Android 

Indian – Computer Emergency Response Team (https://www.cert-in.org.in)

Severity Rating: HIGH

Software Affected

Android Versions 13, 14, 15, 16

Overview

Multiple vulnerabilities have been reported in Android which could be exploited by an attacker to obtain sensitive information, gain elevated privileges, remotely execute arbitrary code and cause denial of service condition on the targeted system.

Target Audience:

All OEMs and users of Android.

Risk Assessment:

High Risk of unauthorized access to data and system instability.

Impact Assessment:

Potential unauthorized access to sensitive user information, privilege escalation and system compromise.

Description

Android is an open-source operating system primarily designed for mobile devices including smartphones, tables, smart watches and other embedded systems.

These vulnerabilities exist in Android due to flaws in the Framework, System, Kernel, Arm components, Imagination Technologies, MediaTek components, Qualcomm components and Qualcomm closed-source components.

Successful exploitation of these vulnerabilities could allow the attacker to obtain sensitive information, gain elevated privileges, remotely execute arbitrary code and cause denial of service condition on the targeted system.

Solution

Apply appropriate updates when made available by the respective OEMs:

https://source.android.com/docs/security/bulletin/2025-08-01

Vendor Information

Android

https://source.android.com/docs/security/bulletin/2025-08-01

References

Android

https://source.android.com/docs/security/bulletin/2025-08-01

CVE Name

CVE-2025-22441

CVE-2025-48533

CVE-2025-48530

CVE-2025-27038

CVE-2025-21479

CVE-2025-0932

– —

Thanks and Regards,

CERT-In

Incident Response Help Desk

e-mail: incident@cert-in.org.in

Phone: +91-11-22902657

Toll Free Number: 1800-11-4949

Toll Free Fax : 1800-11-6969

Web: http://www.cert-in.org.in

PGP Fingerprint: A768 083E 4475 5725 B81A A379 2156 C0C0 B620 D0B4

PGP Key information:

https://www.cert-in.org.in/s2cMainServlet?pageid=CONTACTUS

Postal address:

Indian Computer Emergency Response Team (CERT-In)

Ministry of Electronics and Information Technology

Government of India

Electronics Niketan

6, C.G.O. Complex

New Delhi-110 003

—–BEGIN PGP SIGNATURE—–

iQIzBAEBCAAdFiEE6r4Iam/Ey0c/KakL3jCgcSdcys8FAmipuxcACgkQ3jCgcSdc

ys+slxAAm6ceCsodahdmePqGNyy4rjY19jqrmRXD7GNg+wVUdOU8Xcj6BYS8Wa6a

2ooho8HgjJRowaa67qknnX8p1T9sC6DOjRY8wtbczJ2ly0RYDqP42zAJ6qLletob

+EGZGp1LxNR288YRtjB3/wy+yBIvkTQDdfLH5ZidpAw04uPNuOpngvE/ewKpg/vZ

Cxbld8CAb5FybmwcBNao1PvbStkJv5Tr+d2g2Y9QNPzJqC57N9jquvklDf5GUAjd

BInayYuE3uVNX9evoxtD0EM9wg/K2Of+0XOYVGzNHCZPsniIoAD2sWVFaGhqqInX

8EHfH5kaxOHFiIDh68eahhMfUEi+G2jvHADAW+DtaMbFtsNNUmo9R0ODAnhxwRJ6

YLBNHm+7d5d/8iBVsymfUEsgGv2+xe7fiIA5YOvQOsva7EBILX5ag85xO8yVYyk5

vBUUwgIMeUftIElN58WZX5hHqlTMs9qBH7HXBkwUidahaALoCEssP9wQQCUsPcw6

G0d6z/KpDbYLFPyYRAyeNCcE2bYF0E7TkT18xhKq/4MYifc0maqwaIofe3GOQ+Ly

JE4q1hPMe9KpEhYoLxKtCfR6oF8Oli+vfZQac71+GFpJ1iw2Uk7RmcKD9AxoLmyT

FNIGrCndD0sOvd4teVLHwrxqC9IO/aOKN/JN/NHgB/peVOp39NY=

=Dhy2

—–END PGP SIGNATURE—–