CISA has mandated patching for two actively exploited vulnerabilities: CVE-2022-0492, a Linux kernel cgroups flaw (CVSS 7.8) allowing container escape and host command execution, and CVE-2025-48595, an Android Framework integer overflow (CVSS 8.4) leading to local privilege escalation and code execution. The Linux kernel vulnerability is fixed in versions 4.9.301, 4.14.266, 4.19.229, 5.4.177, 5.10.97, 5.15.20, and 5.16.6, while the Android flaw affects versions 14.0 through 16.0. Federal agencies must remediate by June 5, 2026, and all organizations are urged to apply patches promptly.
Vulnerability Management CISA adds Android and Linux kernel flaws to exploited vulnerabilities catalog June 3, 2026 Share By SC Staff (Adobe Stock) Security Affairs reports that the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two new vulnerabilities affecting the Linux kernel and Android to its catalog of Known Exploited Vulnerabilities (KEV). This inclusion mandates federal agencies to address these flaws by a specific deadline to mitigate risks. The vulnerabilities added are CVE-2022-0492, a Linux kernel improper authentication flaw with a CVSS score of 7.0, and CVE-2025-48595, an Android framework integer overflow vulnerability with a CVSS score of 8.4. The Linux kernel flaw allows local attackers to escape containers and execute arbitrary commands on the host by exploiting a privilege escalation issue in cgroups. The Android vulnerability, affecting versions 14 through 16, can lead to code execution and privilege escalation, and Google has indicated it is under limited, targeted exploitation. CISA's Binding Operational Directive 22-01 requires federal agencies to remediate these vulnerabilities by June 5, 2026, to protect their networks. Private organizations are also advised to review the KEV catalog and address these issues. Source: Security Affairs SC Staff Related Vulnerability Management Most organizations that miss 24-hour patch window report breaches Steve Zurier June 2, 2026 Study points out that AI has shattered the model of patching on a two- to four-week schedule. Vulnerability Management Google releases June Android security patches addressing 124 vulnerabilities, including 1 zero-day SC Staff June 2, 2026 The actively exploited vulnerability, identified as CVE-2025-48595, is a high-severity flaw in the Android Framework that allows local attackers to gain code execution and escalate privileges on devices running Android 14 or later. Patch/Configuration Management CISA orders agencies to patch critical Oracle WebLogic Server vulnerability SC Staff June 2, 2026 The vulnerability, CVE-2024-21182, affects Oracle WebLogic Server versions 12.2.1.4.0 and 14.1.1.0.0. Get daily email updates SC Media's daily must-read of the most current and pressing daily news Business Email By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy . Subscribe Related Terms Bug Buffer Overflow Disassembly You can skip this ad in 5 seconds