Summary
Google’s March security updates address 7 vulnerabilities, including 2 with a severity of “high” and one with a severity of “critical”, in Pixel devices.
Risk
Estimate of impact of the vulnerability on the reference community: High (65.38)
Type
- Information Disclosure
- Elevation of Privilege
- Denial of Service
Affected products and versions
All supported Google Pixel devices with security patches prior to March 2025
Mitigation actions
In line with the vendor’s statements, it is recommended to update the vulnerable products following the indications reported in the security bulletin, available at the link in the References section.
The following are only the CVEs related to the vulnerabilities with a severity of “critical” and “high”:
References
https://source.android.com/docs/security/bulletin/pixel/2025-03-01
1This estimate is made taking into account several parameters, including: CVSS, availability of patches/workarounds and PoC, diffusion of the affected software/devices in the reference community.
