The fragility of the zero day is a mistake that developers have learned only after being used by the attackers. In this case, the security vulnerability of the CV-2025-27 363 in the Freeype library allows you to execute harmful code without interacting with the user and threatens the safety of devices.
The update as a whole is divided into two levels: 2025−05−01 25 corrects the vulnerability and adds patches for 2025−05−05, third -party components and Android seeds. With CVSS 8.1 degree, CV-2025−27 363 is associated with font processing and can be used through malicious files or applications. Google recommends urgent update of devices to prevent attacks.
Patches android versions are available for devices with 13, 14 and 15 and ARM, MediaTek and Qualcomm processors. Since the security vulnerability can be placed in documents or fonts, users are advised to check the safety settings and download applications from unconfirmed sources.
Source: Ferra
I am a professional journalist and content creator with extensive experience writing for news websites. I currently work as an author at Gadget Onus, where I specialize in covering hot news topics. My written pieces have been published on some of the biggest media outlets around the world, including The Guardian and BBC News.
