Find notable cyber news and cases, enriched with sources, timelines, and signals.

Google security patch release for CVE-2025-48633

Security Patch Release
First reported
Last updated
Happening score
H score 35
2 unique sources, 2 articles

Summary

Hide ▲

Google's December 1 Android Security Bulletin patched 51 flaws in Android and AOSP, with 56 more vulnerabilities due December 5. The release matters because it covers 107 zero-day vulnerabilities across the Android platform and its open-source variant. Google also highlighted CVE-2025-48633, CVE-2025-48572, and CVE-2025-48631 as the bulletin's most significant issues.

Related Happenings

AirDrop and Quick Share fixes from Apple and Google

Security Patch Release
H score27 First: 30.06.2026 12:27 Last: 30.06.2026 12:27 Sources 1

About this happening: **Apple** and **Google** have started shipping fixes for the disclosed **AirDrop** and **Quick Share** flaws, reducing exposure for nearby attacks against widely used sharing feat...

Google Android Developer Verifier enforcement rollout for verified app installs

Security Tool/Service
H score14 First: 22.06.2026 15:45 Last: 22.06.2026 15:45 Sources 1

About this happening: Google is **enforcing Android developer verification** on **September 30, 2026**, blocking normal installs of unverified apps on certified Android phones in **Brazil, Indonesia, S...

Apple security patch release for CVE-2025-20701

Security Patch Release
H score29 First: 18.06.2026 15:23 Last: 18.06.2026 15:23 Sources 1

About this happening: Apple released **Beats Firmware Update 1B211** for **Beats Studio Buds** to fix **CVE-2025-20701**, closing a Bluetooth flaw that could let nearby attackers spy on conversations....

Google security patch release for CVE-2026-10881

Security Patch Release
H score26 First: 06.06.2026 10:28 Last: 06.06.2026 10:28 Sources 1

About this happening: Google shipped **Chrome 149** with patches for **429 security bugs**, including **CVE-2026-10881** in **ANGLE**, creating a broad browser update for users on **Linux, Windows, and...

Google Gemini on Android notification-injection bypass using Fake Context Alignment

Technical Analysis
H score16 First: 03.06.2026 22:11 Last: 03.06.2026 22:11 Sources 1

About this happening: Researchers found a **notification-based prompt-injection bypass** in **Google Gemini on Android** that could turn hostile notification text into **unauthorized assistant actions*...

Timeline

  1. 02.12.2025 13:15 2 articles · 7mo ago

    Google Android Security Bulletin discloses 107 zero-day vulnerabilities

    Initial Disclosure

    Google's Android Security Bulletin disclosed 107 zero-day vulnerabilities affecting Android and Android Open Source Project (AOSP), including CVE-2025-48633 and CVE-2025-48572, which Google said may be under limited, targeted exploitation. The bulletin also identified CVE-2025-48631 as a critical Android Framework flaw that could lead to remote denial of service, and noted that neither CVE-2025-48633 nor CVE-2025-48572 was in CISA's Known Exploited Vulnerabilities catalog.

    Show sources
  2. 02.12.2025 13:15 1 articles · 7mo ago

    Google schedules December 5 release for remaining Android patches

    Mitigation Patch Update

    Google said the remaining Android Security Bulletin fixes would be released on December 5, covering 56 vulnerabilities affecting Android components in the kernel and third-party components such as Arm, Imagination Technologies, MediaTek, Qualcomm and Unison.

    Show sources