Google Addresses 62 Security Issues, Two Actively Exploited
Google has rolled out its Android April 2025 Security Update, addressing a total of 62 vulnerabilities, including two high-severity flaws that have reportedly been exploited in real-world attacks. According to Google’s monthly security bulletin, the two key vulnerabilities—CVE-2024-53150 and CVE-2024-53197—reside in the USB sub-component of the Linux Kernel and both carry a CVSS score of 7.8.
CVE-2024-53150 is an out-of-bounds read vulnerability that can lead to information disclosure, while CVE-2024-53197 is a privilege escalation flaw that could allow attackers to gain higher-level access within a device. Google confirmed these vulnerabilities were likely used in “limited, targeted exploitation,” although it has not disclosed specifics regarding the threat actors or the victims involved.
The company emphasized that the most severe issue addressed in the patch could allow for remote escalation of privilege without requiring any additional execution rights or user interaction, making it a critical security concern.
Link to Known Exploits and Human Rights Concerns
The vulnerabilities are particularly significant because of their connection to a known cyberattack. CVE-2024-53197 was previously identified as part of a trio of vulnerabilities—alongside CVE-2024-53104 and CVE-2024-50302—that were allegedly chained together in an attack on a Serbian youth activist’s Android phone in December 2024. The discovery came to light through an investigation by Amnesty International, highlighting potential human rights implications in cyber surveillance activities.
Google had already addressed CVE-2024-53104 in its February 2025 update and patched CVE-2024-50302 last month. With the release of the April update, the tech giant has now remediated all three vulnerabilities believed to have been exploited in that attack, effectively closing the security loophole used in the incident.
Although Google has not publicly detailed how CVE-2024-53150 was exploited or who the targets may have been, security experts believe its pairing with other flaws could form part of complex exploit chains used for surveillance or espionage in April 2025 Security Update.
Google Urges Users to Update as OEMs Roll Out Fixes
In light of the potential threats, Google is urging Android users to install the latest April 2025 Security Update as soon as they become available through their device manufacturers. Because Android updates are distributed through original equipment manufacturers (OEMs) such as Samsung, Xiaomi, and others, the timing of the patch availability may vary by device.
Experts recommend that users remain vigilant and ensure they are running the latest software versions to minimize the risk of cyberattacks. Devices that are not regularly updated are especially vulnerable to known exploits, which can be used by threat actors to gain unauthorized access or extract sensitive information.
This latest round of updates underscores the importance of ongoing vigilance in mobile security, particularly as Android continues to be a target for sophisticated surveillance operations.
