Google has disclosed that two Android security flaws impacting its Pixel smartphones have been exploited in the wild by forensic companies.
The high-severity zero-day vulnerabilities are as follows -
CVE-2024-29745 - An information disclosure flaw in the bootloader component
CVE-2024-29748 - A privilege escalation flaw in the firmware component
"There are indications that the [
Google has resolved a high-severity security issue affecting all Pixel smartphones that could be trivially exploited to unlock the devices.
The vulnerability, tracked asΒ CVE-2022-20465Β and reported by security researcher David SchΓΌtz in June 2022, was remediated as part of the search giant'sΒ monthly Android updateΒ for November 2022.
"The issue allowed an attacker with physical access to bypass