Google’s June security update for Android devices contains 34 vulnerabilities, all of which the company designates as high-severity defects. The company didn’t disclose any actively exploited vulnerabilities.Attackers could exploit the most serious flaw — CVE-2025-26443 affecting the Android system — to achieve local escalation of privilege with no additional privileges required. Google said exploitation of the vulnerability requires user interaction. Google’s security update includes one high-severity vulnerability in Android Runtime, 11 high-severity defects affecting the Android framework and four high-severity vulnerabilities affecting the Android system. The vulnerabilities, if exploited, could allow attackers to achieve escalation of privileges, remote code execution, denial of service and information disclosure.The company did not address a trio of Qualcomm component zero-days — CVE-2025-21479, CVE-2025-21480 and CVE-2025-27038 — the chipmaker disclosed in a separate security bulletin Monday. Qualcomm said Google’s Threat Analysis Group determined the three memory-corruption flaws “may be under limited, targeted exploitation.” The Cybersecurity and Infrastructure Security Agency added all three Qualcomm component vulnerabilities to the known exploited vulnerabilities catalog Tuesday.The Android security update contains two patch levels — 2025-06-01 and 2025-06-05 — allowing Android partners to address a group of 16 common vulnerabilities on different devices.The second patch includes fixes for two high-severity vulnerabilities affecting Arm components, seven defects in Imagination Technologies components and nine total vulnerabilities in Qualcomm components.Third-party Android device manufacturers release security patches on their own schedule after they’ve customized operating system updates for their specific hardware.Google said source code patches for all 34 vulnerabilities addressed in this month’s security update will be released to the Android Open Source Project repository by Wednesday.The post Google addresses 34 high-severity vulnerabilities in June’s Android security update appeared first on CyberScoop.