Google and Samsung have initiated critical Android updates impacting millions of Galaxy phones, addressing a severe security vulnerability in the System component.
Google stated, “The most severe of these issues is a critical security vulnerability in the System component,” adding it “could lead to remote code execution with no additional execution privileges needed.” This vulnerability, identified as CVE-2025-48593, affects all supported Android versions. Specific details are currently withheld by Google until wider deployment of the fix.
Samsung’s November security release incorporates this fix. Users can verify their Galaxy phone’s eligibility for the update. While Google’s Android bulletin is concise due to its quarterly schedule, Samsung’s update bundle includes numerous other fixes, many categorized as high severity.
According to SammyFans, the update is “first reaching the Galaxy A17 5G, instead of the premium Galaxy Z and S series models.” The reason for this distribution priority remains unspecified.
Users of eligible models should regularly check for the update. Distribution is contingent on model, region, and carrier. To check, navigate to Settings >> Software update >> Download and install. Due to the critical nature of the Android fix, immediate installation is recommended upon availability.
Concurrently, the Galaxy S20 FE series has reached its end-of-software-support lifecycle. SamMobile reported, “Last month, in October, the Galaxy S20 FE completed five years on the market, and as expected, it has now reached the end of its software support lifecycle.” This signifies the cessation of Android upgrades and essential security updates for these devices.
As SamMobile advises, “if you want to keep your phone secure against the latest threats, it’s time to consider an upgrade.” Approximately a billion Android users operate phones no longer receiving support, increasing their risk exposure.
