The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning about active exploitation of vulnerabilities in the Linux kernel and Android operating system, specifically highlighting a high-severity flaw in the Android Framework and a privilege escalation vulnerability in multiple Linux kernel branches. Federal agencies are required to apply security updates or cease using the affected software by June 5, 2026, while other organizations are urged to take similar precautions.
CISA's recent inclusion of CVE-2025-48595 and CVE-2022-0492 in its Known Exploited Vulnerabilities catalog highlights the urgent need for organizations to patch these vulnerabilities in Android and Linux systems, especially in environments using cgroups v1. This is particularly critical as the flaws can lead to privilege escalation and potential container escapes, underlining the importance of applying the latest security patches and enhancing monitoring to prevent exploitation.