{"id":219591,"date":"2026-03-02T17:28:00","date_gmt":"2026-03-02T22:28:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/03\/02\/google-addresses-actively-exploited-qualcomm-zero-day-in-fresh-batch-of-129-android-vulnerabilities\/"},"modified":"2026-03-03T19:40:12","modified_gmt":"2026-03-04T00:40:12","slug":"google-addresses-actively-exploited-qualcomm-zero-day-in-fresh-batch-of-129-android-vulnerabilities","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/03\/02\/google-addresses-actively-exploited-qualcomm-zero-day-in-fresh-batch-of-129-android-vulnerabilities\/","title":{"rendered":"Google addresses actively exploited Qualcomm zero-day in fresh batch of 129 Android vulnerabilities"},"content":{"rendered":"<p><a href=\"https:\/\/cyberscoop.com\/android-security-update-march-2026\/\">Google addresses actively exploited Qualcomm zero-day in fresh batch of 129 Android vulnerabilities<\/a><\/p>\n<p><a href=\"https:\/\/cyberscoop.com\/android-security-update-march-2026\/\">https:\/\/cyberscoop.com\/android-security-update-march-2026\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-03-02 17:28:00<\/a><\/p>\n<p>Source Domain: <a href=\"cyberscoop.com\">cyberscoop.com<\/a><\/p>\n<p>Google disclosed one actively exploited zero-day vulnerability Monday, warning that the high-severity defect affecting an open-source Qualcomm display component for Android devices \u201cmay be under limited, targeted exploitation.\u201d<\/p>\n<p>The memory-corruption vulnerability \u2014 CVE-2026-21385 \u2014 which Google\u2019s Android security team reported to Qualcomm Dec. 18, affects 234 chipsets, Qualcomm said in a security bulletin. Qualcomm said it notified customers of the vulnerability Feb. 2.<\/p>\n<p>Qualcomm declined to say when the earliest known instance of exploitation occurred, how many victims have been directly impacted, and what occurred during the 10-week period between the reporting and public disclosure of the vulnerability.\u00a0<\/p>\n<p>\u201cWe commend the researchers from Google\u2019s Threat Analysis Group for using coordinated disclosure practices,\u201d a Qualcomm spokesperson told CyberScoop. \u201cFixes were made available to our customers in January 2026. We encourage end users to apply security updates as they become available from device makers.\u201d<\/p>\n<p>A Google spokesperson said Qualcomm marked the vulnerability as exploited. \u201cWe don\u2019t have any info or access to the exploit reports,\u201d the spokesperson added.<\/p>\n<p>Google addressed 129 defects in its monthly security update for Android devices, reflecting a surge in vulnerability disclosures from the vendor. The company\u2019s latest security update contains the highest number of Android vulnerabilities patched in a single month since April 2018.<\/p>\n<p>Google\u2019s public vulnerability disclosure and reporting program for Android has been uneven. The company typically issued dozens of security patches each month, but that cadence has shifted to a more occasional routine.\u00a0<\/p>\n<p>So far this year, Google addressed one Android vulnerability in January and none in February. There were occasional lulls last year as well when Google reported no vulnerabilities in July and October, six in August and two vulnerabilities in November&#8230;.<\/p>\n<p><a href=\"https:\/\/cyberscoop.com\/android-security-update-march-2026\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Google addresses actively exploited Qualcomm zero-day in fresh batch of 129 Android vulnerabilities https:\/\/cyberscoop.com\/android-security-update-march-2026\/ Publish&#8230;<\/p>\n","protected":false},"author":1,"featured_media":219592,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2026\/03\/GettyImages-2233979044-1.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[31,27],"class_list":["post-219591","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-exploit","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/219591"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=219591"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/219591\/revisions"}],"predecessor-version":[{"id":219593,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/219591\/revisions\/219593"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/219592"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=219591"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=219591"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=219591"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}