OS SecurityBleeping Computer
8.4 — CRITICAL
CISA warns of active attacks exploiting Android, Linux bugs
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning that hackers are exploiting vulnerabilities in the Linux kernel and Android operating system. [...]
🤖 AI BriefingAuto-generated threat analysis
🔍Threat Overview
Hackers are exploiting vulnerabilities in the Linux kernel and Android operating system, with CISA warning that these flaws can be leveraged for increased privileges and potentially escape from a container to gain root-level access on the host system.
⚙️Technical Details
💥Impact Assessment
Severity: Critical
🛡️Recommended Actions
1Apply vendor-provided security updates and mitigations
2Stop using impacted software until the deadline is met
3Validate network controls, detection rules, and cloud configs to prevent exploitation
📦Affected Products
Google AndroidCanonical Ubuntu LinuxDebian Debian LinuxFedoraproject FedoraLinux Linux KernelNetapp Bootstrap OsNetapp H300SNetapp H300S FirmwareNetapp H410CNetapp H410C Firmware
🔐NVD Verified DataVERIFIED
CVE-2025-48595 ↗CVSS 8.4 — HIGH
Attack Vector
LOCAL
Complexity
LOW
Vector String
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HWeaknesses
CWE-190
Affected Products (CPE)
Google Android
CVE-2022-0492 ↗CVSS 7.8 — HIGH
Attack Vector
LOCAL
Complexity
LOW
Vector String
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HWeaknesses
CWE-862CWE-287
Affected Products (CPE)
Canonical Ubuntu LinuxDebian Debian LinuxFedoraproject FedoraLinux Linux KernelNetapp Bootstrap Os
Patches & References
🔧 https://bugzilla.redhat.com/show_bug.cgi?id=2051505🔧 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/com…🔧 https://bugzilla.redhat.com/show_bug.cgi?id=2051505📋 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/com…📋 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/com…
Read the full article
This is a curated summary. The complete article is available at Bleeping Computer.