Google Patches 2 Actively Exploited Zero-Days in Android - Update Your Phone NOW

What is a Zero-Day and Why Is This Urgent?

A zero-day vulnerability is a software security flaw that is discovered and exploited by attackers before the developer has a chance to release a patch. The term "zero-day" refers to the fact that developers have had zero days to fix the problem. This makes such vulnerabilities particularly dangerous because they leave users defenseless until an update is issued and installed.bleepingcomputer+1

The two actively exploited zero-day vulnerabilities patched in the September update are:

• CVE-2025-38352: A high-severity flaw in the Android Framework that could allow an attacker to gain elevated privileges.cyberinsider+1

• CVE-2025-48543: A high-severity flaw in the Linux kernel that could also lead to an attacker gaining higher-level access to a device's systems.securityonline+1

In simple terms, these flaws could allow a malicious app to bypass Android's security permissions and take greater control of your phone. The update also patches a critical remote code execution (RCE) flaw, CVE-2025-48539, which could allow an attacker to run malicious code on a device without any user interaction.bleepingcomputer

How to Update Your Android Phone Now

It is crucial to install the September 2025 security update as soon as it becomes available for your device. The update will have a security patch level of 2025-09-01 or 2025-09-05. Here's a step-by-step guide to check for and install the update on your phone.source.android

For Google Pixel Phones:

1. Open your phone's Settings app.

2. Scroll down and tap on System.

3. Tap System update.

4. Your phone will check for the update. If available, tap Download and install.

Pixel phones are typically the first to receive these updates directly from Google.source.android

For Samsung Galaxy Phones:

1. Open the Settings app.

2. Scroll down and tap on Software update.

3. Tap on Download and install.

4. If the update is available, follow the on-screen instructions to install it.

Samsung is generally quick to roll out security patches to its flagship and popular mid-range devices.bleepingcomputer

For Other Android Phones (OnePlus, Motorola, etc.):
The process is similar, though menu names may vary slightly.

1. Open the Settings app.

2. Look for a menu item like System, About phone, or Software update.

3. Find and tap the option to Check for updates or System update.

The delivery of updates can vary by manufacturer and carrier. If you don't see the update immediately, check again in a few days. Given the active exploitation of these flaws, enabling automatic updates is highly recommended.

more alfaiznova.com