This week marked the launch of Google’s initial Pixel Drop for 2025, unveiling an extensive array of improvements for its premier smartphones, tablets, and smartwatches. The release was accompanied by the March 2025 Android Security Bulletin, which addressed 43 vulnerabilities, including two zero-day vulnerabilities that are currently believed to be subject to “limited, targeted exploitation” on devices operating on the Android platform.

The updates respond to a variety of issues, such as those that might allow malicious entities to execute code remotely on at-risk devices, as well as problems associated with Qualcomm and MediaTek hardware components. The two zero-day vulnerabilities of the highest severity are identified as CVE-2024-43093 and CVE-2024-50302, both of which involve “privilege escalation”. As reported by Bleeping Computer, the former permits attackers to access private information by circumventing a file path filter without requiring additional input from the user, whereas the latter pertains to a flaw within the Linux kernel that offers the means to unlock seized devices—an exploit that has allegedly been employed by Serbian authorities against activists.

Zero-day vulnerabilities are those security weaknesses that are made public before developers manage to create a solution. While the current exploitation appears to be restricted to Serbian officials, it remains crucial to bolster device security before other malicious actors take advantage of these weaknesses.

Steps to Ensure Your Android Device Is Updated

Typically, resolving security vulnerabilities on Android devices simply requires installing updates prompted by notifications. Google provides patches for its Pixel line of phones and the Android Open Source Project (AOSP), while also informing other manufacturers, including Samsung, Motorola, and OnePlus, about forthcoming updates.

For devices running Android 10 and later, security updates and Google Play system updates may be available. The latest patches are applicable to AOSP versions 12, 12L, 13, 14, and 15, with the most recent update dated 2025-03-05.

If there’s uncertainty regarding your Android device’s update status, or if a notification was missed, you can verify the Android version by navigating to your device settings (About phone or About tablet > Android version). Subsequently, check for updates by visiting your update status (System > Software update or System update). Follow the prompts displayed on-screen to download and install any available patches.