Google Warns: Android Zero-Day Flaws in Pixel Phones Exploited by Forensic Companies

Google has disclosed that two Android security flaws impacting its Pixel smartphones have been exploited in the wild by forensic companies.
The high-severity zero-day vulnerabilities are as follows -

CVE-2024-29745 - An information disclosure flaw in the bootloader component
CVE-2024-29748 - A privilege escalation flaw in the firmware component

"There are indications that the [

android android security bootloader companies cve cve-2024 disclosure escalation exploited firmware flaw flaws forensic google high information information disclosure phones pixel privilege privilege escalation privilege escalation flaw security security flaws severity smartphones vulnerabilities zero-day zero-day flaws zero-day vulnerabilities