CVSS 8.4ACTIVELY EXPLOITED4 sources verified·1 min read
By Lyrie Threat Intelligence·6/2/2026
HIGH: CVE-2025-48595 actively exploited — multiple vendors
CVE: CVE-2025-48595
CVSS: 8.4 (3.1) — CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH
Status: ✅ Confirmed exploited in the wild (CISA KEV)
Affected
_See vendor advisory_
Summary
In multiple locations, there is a possible way to achieve code execution due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Verified Sources
References
- https://source.android.com/docs/security/bulletin/2026/2026-06-01
_Validated by the Lyrie Threat Intelligence Pipeline — 3 independent sources confirmed before publication. No speculation._
Lyrie Verdict
Lyrie's autonomous detection layer catches active exploitation primitives at machine speed — closing the gap between disclosure and weaponization that traditional defense simply can't cover.
Validated sources
- [1]NVD
- [2]GitHub Advisory
- [3]MITRE
- [4]CISA KEV
Related Articles
active exploitation
Most $TAO holders know what dTAO is.
Almost none of them understand what it is actually telling them.
That gap is wher
1 min read · 1 sources
active exploitation
random discord guy in 2026:
"we have discovered a critical vulnerability in your protocol"
the vulnerability: "we can
1 min read · 1 sources
active exploitation
CISA: CVE-2026-20253 added to Known Exploited Vulnerabilities — Splunk Enterprise
1 min read · 3 sources