Your smartphone may not be as secure as you think. Google has just published its August 2025 patch for Android, and two critical flaws with Qualcomm flea market were already used in attacks. If you have a recent model, installing this update is essential.
Android monthly updates are not only used to improve the system. They mainly correct flaws that could be exploited by pirates. Certain vulnerabilities directly concern the material components used in the majority of smartphones. When detected as actively exploited, the reactivity of updates is crucial.
This is the case of the August 2025 security patch published by Google. It corrects several flaws, two of which were reported in the Qualcomm chips, used on many Android phones. Among the models concerned are recent devices such as the Samsung Galaxy Z Fold 7, the Galaxy Z Flip 7 or even the Xiaomi 15 Ultra.
These vulnerabilities, identified under the CVE-2025-21479 and CVE-2025-27038 codes, had already been identified in targeted attacks. Qualcomm had alerted to their existence in June, and Google now confirms that they are actively exploited.
Two flaws in the Qualcomm fleas opened the door to the pirates
The first flaw (CVE-2025-21479) is linked to poor management of authorizations in the graphic processor. It could allow the execution of unauthorized orders and cause memory corruption. The second (CVE-2025-27038) concerns an USE-AFTER-FREE defect in Adreno graphic pilots. It could, during the rendering of images, lead to the same result: an alteration of memory exploitable by an attacker. These vulnerabilities are now included in the official catalog of exploited faults, run by the American agency Cisa.
The August corrective also corrects other equally serious flaws in Android. There are two vulnerabilities of elevation of privilege in Android Framework and a critical bug in the system component, which could lead to a remote code execution, in other words a possible takeover of the device. Google offers two levels of fixes, 2025-08-01 and 2025-08-05, the second also including fixes for third-party components like Arm and Qualcomm. Users are therefore strongly encouraged to quickly install the update as soon as it is available on their device.