Google has released its May 2025 Android security updates, addressing a total of 46 vulnerabilities across various system components. Among the fixed issues is a high-severity vulnerability, tracked as CVE-2025-27363, which has reportedly been exploited in the wild. This particular flaw affects the System component and allows for local code execution without requiring user interaction or additional execution privileges, making it particularly dangerous.

CVE-2025-27363 originates from the FreeType open-source font rendering library and was initially disclosed by Facebook in March 2025. It is categorized as an out-of-bounds write issue, triggered during the parsing of TrueType GX and variable font files. This flaw could potentially allow attackers to execute arbitrary code on affected devices. Google notes that the vulnerability is under limited, targeted exploitation, though specific attack details remain undisclosed. The issue has been resolved in FreeType versions above 2.13.0.

In addition to CVE-2025-27363, Google's update includes fixes for eight other vulnerabilities in the Android System and 15 flaws in the Framework module. These could be leveraged for privilege escalation, information disclosure, and denial-of-service (DoS) attacks. The update highlights the continued importance of timely patching to reduce exposure to such threats.

Google emphasized that newer Android versions include security hardening measures that make exploitation of many vulnerabilities more difficult. As such, users are strongly encouraged to upgrade to the latest available Android version to benefit from these protections and the latest patches.

This monthly update reflects Google’s ongoing efforts to address actively exploited vulnerabilities and improve overall Android platform security.