Google Patches Critical Android Zero-Day Flaws Exploited in the Wild: Urges Users to Update Immediately

Mountain View, CA — Google has issued an urgent security update for Android, fixing two critical zero-day vulnerabilities that have reportedly been exploited by hackers. These security flaws, which affect the Android Kernel’s USB subcomponent, allow attackers to access sensitive information and elevate privileges on a target device without any user interaction — a dangerous capability known as a zero-click exploit.

The flaws, tracked as CVE-2024-53150 and CVE-2024-53197, were part of the April 2025 Android Security Bulletin, which included 62 vulnerability patches across the operating system.

What Are the Two Zero-Day Vulnerabilities?

According to Google, both flaws are high-severity vulnerabilities that could be (and reportedly were) exploited in targeted attacks:

• CVE-2024-53197: Allows remote privilege escalation through the Android USB kernel, requiring no user interaction. It was part of a multi-vulnerability exploit chain reportedly used against a Serbian activist, as revealed in cybersecurity investigations.

• CVE-2024-53150: An out-of-bounds flaw also found in the USB subcomponent of the Android Kernel. This issue could lead to unauthorized disclosure of sensitive user data. Although no exploitation details have been disclosed, Google acknowledges the potential misuse in real-world scenarios.

These zero-day flaws were used in tandem with previously patched vulnerabilities CVE-2024-53104 and CVE-2024-50302, showing the complexity and coordination of these attacks.

Over 60 Vulnerabilities Fixed in Total

The April 2025 Android security update doesn’t just address the two zero-day threats. Google patched a total of 62 security vulnerabilities, including:

• Several high-severity flaws allowing elevated privileges

• Bugs that could lead to information leakage

• Multiple issues across Android’s framework, system, and kernel components

Who Should Update Now?

• Google Pixel users: The update is already rolling out and includes the patch level 2025-04-05.

• Other Android smartphone users: Will need to wait for their device manufacturers (Samsung, OnePlus, Xiaomi, etc.) to roll out the update. This could take weeks to months.

Regardless of device brand, users are strongly advised to install the security update as soon as it becomes available to protect against active and emerging exploits.

Why This Update Matters

This is the latest in a string of real-world Android exploit cases — a sign that state-sponsored and organized threat actors are increasingly targeting mobile platforms. Zero-click vulnerabilities like CVE-2024-53197 are especially dangerous because they bypass typical user defenses such as avoiding suspicious links or apps.

Google has not disclosed who discovered these vulnerabilities or how widespread the exploitation was, but the involvement of political activists in at least one known case suggests targeted surveillance.

Stay Protected

• Check for updates in your phone’s Settings > System > Software Update.

• Enable automatic updates when possible.

• Stay cautious of unknown accessories and charging cables, as USB-related flaws can sometimes be exploited physically.