Critical Remote Code Execution Vulnerability Patched in Android

Several flaws were exploited in attacks last year, includingCVE-2024-43093, CVE-2024-50302,CVE‑2025‑27038,CVE-2025-48543, and CVE-2025-38352.Google announced last week that it has significantlyincreasedmaximum bug bounty payouts for Android device vulnerabilities, offering up to $1.5 million for a zero-click Pixel Titan M exploit with persistence.Related:Microsoft Finds Vulnerability Exposing Millions of Android Crypto Wallet UsersRelated:Google API Keys in Android Apps Expose Gemini Endpoints to Unauthorized AccessRelated:Severe StrongBox Vulnerability Patched in Android

Google announced last week that it has significantlyincreasedmaximum bug bounty payouts for Android device vulnerabilities, offering up to $1.5 million for a zero-click Pixel Titan M exploit with persistence.Related:Microsoft Finds Vulnerability Exposing Millions of Android Crypto Wallet UsersRelated:Google API Keys in Android Apps Expose Gemini Endpoints to Unauthorized AccessRelated:Severe StrongBox Vulnerability Patched in Android

Related:Microsoft Finds Vulnerability Exposing Millions of Android Crypto Wallet UsersRelated:Google API Keys in Android Apps Expose Gemini Endpoints to Unauthorized AccessRelated:Severe StrongBox Vulnerability Patched in Android

Related:Google API Keys in Android Apps Expose Gemini Endpoints to Unauthorized AccessRelated:Severe StrongBox Vulnerability Patched in Android

Related:Severe StrongBox Vulnerability Patched in Android

Eduard Kovacs (@EduardKovacs) is senior managing editor at SecurityWeek. He worked as a high school IT teacher before starting a career in journalism in 2011. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

In cyber-physical systems (CPS), just one hour of downtime can outweigh an entire annual security budget. Learn how to master the Return on Security Investment (ROSI) to align security goals with the bottom-line priorities.

Delve into big-picture strategies to reduce attack surfaces, improve patch management, conduct post-incident forensics, and tools and tricks needed in a modern organization.

Jacki Monson has joined CVS Health as SVP, Deputy CISO.

Gigi Schumm has been promoted to Chief Revenue Officer at Securonix.

Source: SecurityWeek